End-to-End Security Services
Alibaba Cloud Security Product
Basic DDoS protection integrated with ECS
BGP-based DDoS mitigation, low latency, X Tbit/s bandwidth, and anycast
Assets/Baseline/Compliance/Ransomware/Mining/Tamper-proofing/AccessKey pair leak-proofing/Attack source tracing/Cloud security configuration monitoring/Cloud asset risk monitoring
Top 1 in Asia-Pacific; The only Chinese product included in Gartner Magic Quadrant for web application firewalls
Risky operation interception and operation playback
Multiple O&M protocols and automatic synchronization between cloud resources
Access control and IPS at the cloud perimeter, visualized east-west and north-south traffic, and interception of outbound traffic
Flexible HTTPS for websites and applications
Centralized management of certificates on and out of the cloud
Sensitive data identification and data risk monitoring; Static and dynamic data desensitization to ensure asset security
Cloud-based encryption and low costs
Full qualifications, compliant with commercial cryptographic standards
Cloud-based key hosting; Cloud service integration and encryption with ease
Audit of all behavior and interception of risky operations
Maintenance-free, no downtime, and quick deployment
Online business operations are critical to enterprises in the e-commerce industry. Such operations may bring about specific issues, such as the system availability issues that arise due to a significant volume of inbound traffic, promotion abuse that comes along with promo codes and coupons, and distributed denial of service (DDoS) attacks. Such issues arise frequently, which may affect or bring a negative impact on online business operations. Based on extensive practical experience of Alibaba Group in the e-commerce industry, Alibaba Cloud provides comprehensive protection solutions that are designed for website operations.
1. Ensure the stable operation of business O&M systems.
2. Defend against web attacks and malicious frauds.
3. Protect business servers from intrusion and prevent data loss.
Based on years of practical experience in the security protection for enterprise data in the cloud, Alibaba Cloud extracts eight core capabilities from the data security maturity model (DSMM). These core capabilities are required for enterprises that want to safely deploy their business in the cloud. Enterprises can master and develop these capabilities at the levels of cloud, pipeline, and terminal.
Provide data lifecycle management.
Focus on key topics in protecting data security.
Improve the overall defense and response capabilities against risks.
Based on the experiences on e-commerce business protection for many years, Alibaba Cloud takes care of your business and prevents server malfunctions caused by malicious activities and attacks.
After identifying and protecting malicious features of the business traffic on website or applications, only the secure traffic are returned to the server. The website HTTPS is encrypted to prevent hijacking and tampering. It avoids the malicious intrusion of the website server and safeguards your business data.
- Hackers blackmail, database leaks
- Service unavailability due to competitor HTTP flood attacks
- Web pages are tampered with or embedded in dark chains
Security is one of the important factors when enterprises consider whether to migrate their business to the public cloud, or determine the systems and data to be migrated to the public cloud. Alibaba Cloud provides comprehensive security solutions that can keep customer business safe in the public cloud from different dimensions.
- Perform unified monitoring, management, and audit to guarantee standard operating procedures in the cloud.
- Ensure the continuity of cloud-based business and defend against DDoS and web attacks.
- Implement complete network isolation to ensure that communications between different regions in the cloud are compliant and under control.
- Provide all-round protection at the server level to keep servers safe.
In addition to the customers who deploy their business on Alibaba Cloud, the security solutions provided by Alibaba Cloud also cater to the security requirements of customers who operate business in data centers or customers of other cloud service providers. Alibaba Cloud Anti-DDoS Pro and Web Application Firewall (WAF) can protect both cloud and on-premises services. WAF also allows customers to deploy forwarding ports on servers to manage and control data in the cloud and forward data to the ports. For the customers who are unable to access cloud services for a period of time, Alibaba Cloud Security Center can help them protect their servers in the data center. This way, more customers can benefit from cloud security protection.
Defend against DDoS attacks, web attacks, and server attacks that aim at on-premises assets.
Share the information about the most recent attacks in the cloud with customers in their self-managed environments.
Centralize the management and control of both cloud and on-premises assets by using unified security policies.