Alibaba Cloud Object Storage Service (OSS) provides robust security features and holds multiple compliance certifications. OSS supports server-side encryption, client-based encryption, hotlink protection, and fine-grained permission management. This service provides comprehensive security for your data in the cloud to help you meet your enterprise's security and compliance requirements.
Feature | Description |
OSS provides features such as access control lists (ACLs), authorization policies, and hotlink protection whitelists to control and manage access to storage resources. | |
To manage Object Storage Service (OSS) resources more efficiently, use resource groups to group and manage your resources. Resource groups let you group resources by dimensions such as department, project, and environment. In combination with Resource Access Management (RAM), you can isolate resources and manage permissions with fine granularity within a single Alibaba Cloud account. | |
OSS supports client-based and server-side encryption. You can also set TLS versions to enhance the security of HTTPS-encrypted transmission over SSL/TLS. This helps protect data from potential security risks in the cloud. | |
OSS supports multiple data consistency check mechanisms, such as ETag and cyclic redundancy check (CRC). These mechanisms ensure data integrity during upload, download, and storage. This helps you detect and prevent data corruption or loss during transmission and storage. | |
OSS provides a Content Moderation feature to detect prohibited content in stored images, such as content related to pornography, politics, terrorism, or violence. OSS also supports a malicious file detection feature. This feature helps you check your stored data for security risks from files such as WebShell scripts, ransomware, and trojans. | |
If your OSS bucket is attacked or shares illegal content, OSS automatically moves the bucket to a sandbox. This prevents other buckets from being affected. | |
OSS DDoS protection provides DDoS attack mitigation for Object Storage Service. It effectively defends against high-volume malicious attacks to ensure service availability and data security. | |
OSS holds multiple compliance certifications, such as Cohasset Associates audit certification, FINRA 4511, CFTC 1.31, ISO, BS10012, and CSA STAR. These certifications can help you meet various compliance requirements. | |
To help developers better protect user personal information and prevent infringement of end-user rights when using third-party software development kits (SDKs), OSS provides a compliance guide. Developers can refer to this guide for self-checks and proper configuration when integrating the Object Storage Service SDK to meet regulatory compliance requirements. |