Product Introduction
- Product Overview
Purchase Guide
Getting Started
Operation Guide (New Version)
- Overview
- Vulnerability Management
- COS Risk Monitoring
- Cloud Security Posture Management
- Log Analysis
- Notification Center
Operation Guide (Old Version)
- Multi-Cloud Multi-Account Management
- Vulnerability and Risk Center
- Alarm Center
- Log Shipping
- Managing Assets
- Health Checks
- Cloud API Exception Monitoring
- User Behavior Analytics (UEBA)
- Report Download
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Multi-account management related APIs
- Scan Task APIs
- Risk Center APIs
- Asset Center APIs
- Cloud Boundary Analysis APIs
- Cloud API Anomaly Detection APIs
- Report Download APIs
- Solid Protection APIs
- Cloud Security Center Overview APIs
- Data Types
- Error Codes
Related Protocol,
- Service Level Agreement
- Terms Of Service
FAQs
Glossary

Feature Introduction

Download

Focus Mode

Font Size

Last updated: 2026-06-05 20:06:48

CSC monitors COS AccessKey information in real time, sorts out COS permission configurations and call paths, and identifies leakage events, abnormal calls, and permission configuration risks based on Tencent Cloud's extensive intelligence, and then alarms.
Note:
We recommend that you promptly monitor COS call activities and abnormal alarms, and modify permission policies according to the relevant guidelines. This helps you address issues such as COS permission sprawl, configuration errors, slow response to leakage events, and difficulty in tracing abnormal calls. It also enables better COS management, reduces security threats, prevents threat proliferation, and safeguards cloud security.
Feature Sorting
Feature Module
﻿
Feature
Problem Solved
Operation Guide
Statistics Dashboard
﻿
Quickly understand the status of COS assets, and locate abnormal COS buckets that require attention, pending alarms, pending risks, and so on.
Locate high-priority issues, understand how many COS buckets require attention, how many problems are pending, and what the recent security operations trend is.
Statistics Dashboard
Asset list
COS Assets
View basic information, security recommendations, associated alarms and risks, call records, and related assets from the COS asset perspective. (Both permanent and temporary keys are supported.)
Sort out the number of AKs, understand whether each AK is being called, which interfaces this AK is accessed by how many IPs, whether there are any exceptions in the calls, and what the related policies are.
Asset List
﻿
Call Source IP
View IP address region, type, AK invocation status, associated alarms, and call records from the calling source IP address perspective.
Sort out the number of IP addresses that have requested permanent AKs, determine whether an IP address is an internal asset, identify the location of the IP address, analyze how many AKs have been called, check whether there are any alarms, and support customers in adding remarks about the business to which the IP address belongs.
﻿
﻿
Associated AK
View details of COS assets and asset alarms associated with the AK from the perspective of COS-associated AK.
Clarify the scope of COS assets corresponding to each AK, quickly locate security alarms for assets associated with that AK, and assess the impact scope and risk level of the AK.
﻿
Alarm List
Abnormal Access
﻿
View alarm content (leakage, abnormal invocation), associate the AK with abnormal call records, and provide permission policy configuration suggestions from the alarm rule perspective.
The system alarms on leakage events in real time and comprehensively analyzes and traces abnormal calls.
Identify the leaked address, analyze the abnormal call chain (including the calling IP address, accessed services and APIs, and relevant policies), provide remediation recommendations, and guide the response process.
Alarm
﻿
Malicious Files
Monitors malicious files in incremental files in real time. If a bucket contains malicious files, a malicious file alarm will be generated.
Detect malicious file upload threats in a timely manner through malicious file identification, reducing the risks of data leakage and virus infection.
﻿
Risk List
Risk Item Perspective
View risk details, affected buckets and risk levels, and handling suggestions from the risk item perspective.
Sort out the types and quantities of existing risk items, clarify the trigger cause, impact scope, and severity level of each risk, assist in assessing risk priorities, and promote remediation.
Risk
﻿
By assets
View all risk items associated with the asset, risk evidence & description, risk API status, and risk handling status from the asset perspective.
Locate risks associated with specific assets, clarify the impact of risks on asset security, track the entire process of risk discovery and remediation, and ensure asset security.
﻿
Policy Management
Alarm Policy
Manage system alarm policies.
Manage alarm policies that require attention and customize allowlists based on business needs.
Policy Management
﻿
Allowlist Policy
Manages alarm allowlists, supports CRUD operations on allowlists, and allows adding entries to the allowlist based on IP address, invocation method, AK, API, and so on.
﻿
﻿
﻿
IP Hiding Policy
By configuring a calling source IP allowlist policy for a specified AK, all subsequent access IPs for that AK will be automatically hidden and not displayed in the calling source IP list.
﻿
﻿
﻿
Data identification Policy
Sensitive Data Identification Policy Configuration for COS
Helps you understand the distribution of data in storage through sensitive data identification, avoiding compliance risks arising from improper storage or leakage of sensitive data.
﻿
﻿

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

Feature Module			Feature	Problem Solved	Operation Guide
Statistics Dashboard			Quickly understand the status of COS assets, and locate abnormal COS buckets that require attention, pending alarms, pending risks, and so on.	Locate high-priority issues, understand how many COS buckets require attention, how many problems are pending, and what the recent security operations trend is.	Statistics Dashboard
Asset list	COS Assets	View basic information, security recommendations, associated alarms and risks, call records, and related assets from the COS asset perspective. (Both permanent and temporary keys are supported.)	Sort out the number of AKs, understand whether each AK is being called, which interfaces this AK is accessed by how many IPs, whether there are any exceptions in the calls, and what the related policies are.	Asset List
		Call Source IP	View IP address region, type, AK invocation status, associated alarms, and call records from the calling source IP address perspective.		Sort out the number of IP addresses that have requested permanent AKs, determine whether an IP address is an internal asset, identify the location of the IP address, analyze how many AKs have been called, check whether there are any alarms, and support customers in adding remarks about the business to which the IP address belongs.
		Associated AK	View details of COS assets and asset alarms associated with the AK from the perspective of COS-associated AK.		Clarify the scope of COS assets corresponding to each AK, quickly locate security alarms for assets associated with that AK, and assess the impact scope and risk level of the AK.
Alarm List	Abnormal Access	View alarm content (leakage, abnormal invocation), associate the AK with abnormal call records, and provide permission policy configuration suggestions from the alarm rule perspective.	The system alarms on leakage events in real time and comprehensively analyzes and traces abnormal calls. Identify the leaked address, analyze the abnormal call chain (including the calling IP address, accessed services and APIs, and relevant policies), provide remediation recommendations, and guide the response process.	Alarm
Alarm List		Malicious Files	Monitors malicious files in incremental files in real time. If a bucket contains malicious files, a malicious file alarm will be generated.	Alarm	Detect malicious file upload threats in a timely manner through malicious file identification, reducing the risks of data leakage and virus infection.
Risk List	Risk Item Perspective	View risk details, affected buckets and risk levels, and handling suggestions from the risk item perspective.	Sort out the types and quantities of existing risk items, clarify the trigger cause, impact scope, and severity level of each risk, assist in assessing risk priorities, and promote remediation.	Risk
Risk List		By assets	View all risk items associated with the asset, risk evidence & description, risk API status, and risk handling status from the asset perspective.	Risk	Locate risks associated with specific assets, clarify the impact of risks on asset security, track the entire process of risk discovery and remediation, and ensure asset security.
Policy Management	Alarm Policy	Manage system alarm policies.	Manage alarm policies that require attention and customize allowlists based on business needs.	Policy Management
		Allowlist Policy			Manages alarm allowlists, supports CRUD operations on allowlists, and allows adding entries to the allowlist based on IP address, invocation method, AK, API, and so on.
		IP Hiding Policy			By configuring a calling source IP allowlist policy for a specified AK, all subsequent access IPs for that AK will be automatically hidden and not displayed in the calling source IP list.
		Data identification Policy	Sensitive Data Identification Policy Configuration for COS		Helps you understand the distribution of data in storage through sensitive data identification, avoiding compliance risks arising from improper storage or leakage of sensitive data.

tencent cloud

Cloud Security Center

Feature Introduction

Feature Sorting

Help and Support