Product Introduction
- Product Overview
Purchase Guide
Getting Started
Operation Guide (New Version)
- Overview
- Vulnerability Management
- COS Risk Monitoring
- Cloud Security Posture Management
- Log Analysis
- Notification Center
Operation Guide (Old Version)
- Multi-Cloud Multi-Account Management
- Vulnerability and Risk Center
- Alarm Center
- Log Shipping
- Managing Assets
- Health Checks
- Cloud API Exception Monitoring
- User Behavior Analytics (UEBA)
- Report Download
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Multi-account management related APIs
- Scan Task APIs
- Risk Center APIs
- Asset Center APIs
- Cloud Boundary Analysis APIs
- Cloud API Anomaly Detection APIs
- Report Download APIs
- Solid Protection APIs
- Cloud Security Center Overview APIs
- Data Types
- Error Codes
Related Protocol,
- Service Level Agreement
- Terms Of Service
FAQs
Glossary

Asset List

Download

Focus Mode

Font Size

Last updated: 2026-06-05 20:06:48

The Asset List module is the core asset management area for COS exception monitoring. It consists of three core submodules: COS Assets, Calling Source IPs, and Associated Access Keys, and centrally displays detailed information and risk statuses of managed assets. This document details the related operations for you:
Asset Perspective
Description
COS Assets
Centers on COS assets (buckets) as the core resource dimension, integrates access data from source IP addresses and associated AKs to these assets, provides capabilities for asset access topology visualization, IP address/account precise tagging, and security policy rapid adjustment, and achieves centralized, fine-grained control over the access target side.
Call Source IP
Centers on the source IP address of the access initiator as the core control dimension, integrates the access data from this IP address to COS assets, provides capabilities for access topology visualization, IP address/account precise tagging, and rapid adjustment of IP address hiding/access control policies, and achieves centralized, fine-grained control over the access initiator.
Associated AK
Centers on the associated AK of the access credential as the core control dimension, integrates the access data from the AK to COS assets, provides capabilities for AK permission analysis, call behavior auditing, and rapid configuration of AK disablement/permission adjustment policies, and achieves centralized, fine-grained control over the access identity.
COS Assets
The COS Assets page displays comprehensive information across all dimensions for all synchronized and managed COS buckets (including bucket / region / remarks). It serves as the core page for asset security posture monitoring:
COS Asset List
1. Log in to the CSC console. In the left-side navigation pane, click Data Security Situation Management > COS Risk Monitoring.
2. On the COS Exception Monitoring page, click Asset List > COS Asset.
3. On the COS Assets page, you can view basic bucket information, security recommendations, and associated alarms and risks from the COS asset perspective.
﻿
Enabling Exception Monitoring
The system monitors abnormal behavior in real time. If an enabled alarm policy is triggered by bucket invocation behavior, an abnormal behavior alarm will be generated.
On the COS Assets page, select the asset for which you want to enable exception detection, and click Enable in the Detection Status column. This enables exception detection.
﻿
Enabling Sensitive Data Identification
On the COS Assets page, select an asset for which exception detection is already enabled. Then, choose More > Sensitive data full check in the Operations column to create and enable sensitive data identification.
﻿
COS Details
1. On the COS Assets page, select the desired asset and click Details.
﻿
2. On the COS Details page, you can view the basic information, invocation records, access permission scope, and associated alarm and risk details of the current COS asset. Using this page, you can perform targeted data security governance.
3. On the COS Details page, click Basic Info to view basic bucket information, including region, account name, account ID/APPID, Tags, creation time, last access time, and access methods.
﻿
On the COS Details page, click Basic Info > Call record to view the invocation records for the current COS asset. The records include: source IP/region/remarks, IP type, invocation method, invocation AK, operation action, operation status/count, and first/last invocation time.
﻿
On the COS Details page, click Basic Info > Access Scope to view the access permission scope of the current COS asset from the perspectives of access accounts and access roles.
﻿
On the COS Details page, click Basic Info> Data Identification to view the sensitive data identification results for the COS.
﻿
4. On the COS Details page, click Alert to view alarm information for the current COS asset. Unhandled alarms are displayed by default. Click Details to open the Alarm Details page.
﻿
5. On the COS Details page, click Risk to view bucket risk information. Unhandled risks are displayed by default. Click Details to open the Risk Details page.
﻿
Source IP Address
Source IP Address List
1. Log in to the CSC console. In the left-side navigation pane, click Data Security Situation Management > COS Risk Monitoring.
2. On the COS Exception Monitoring page, click Asset List > Call Source IP.
3. On the Source IP page, you can view source IP information, invocation AK, invoked COS, associated alarms, invocation method, and invocation time from the source IP perspective.
﻿
Note:
Only IPs accessed via permanent keys are displayed.
Source IP Address Details
1. On the Source IP page, select the desired source IP and click Details.
2. On the Source IP Details page, click Basic Info to view the basic information of the current IP address, including the associated account, account ID/APPID, asset ID to which the IP address belongs, asset name to which the IP address belongs, and last invocation time.
﻿
On the Source IP Details page, click Basic Info > Call record to view invocation records, including AK name/remarks, invocation method, bucket name/region/remarks, invocation status/quantity, operation action, and last invocation time.
﻿
3. On the Source IP Details page, click Alert to view alarm information related to this IP address. Unhandled alarms are displayed by default. Click Details to view the Alarm Details.
﻿
Associated Access Key
Note:
Associated Access Keys (AKs) only display COS-related AK assets. To view more complete AK assets, or to further configure policies, manage allowlists, and view & handle risks, go to TencentCloud API Exception Monitoring.
The Associated Access Key (AK) list displays COS-related AK assets. From the AK perspective, you can view the associated COS assets and their alarm details.
Access Key Details
Log in to the CSC console. In the left-side navigation pane, click Data Security Situation Managemrnt > COS Risk Monitoring.
1. On the COS Exception Monitoring page, click Asset List > Associated AK.
2. On the Associated AK page, select the AK you want to view and click Details.
﻿
3. On the AK Details page, the current AK details, AK invocation details, and COS alarms associated with the AK are displayed.
﻿
Access Key Call Records
1. On the AK Details page, click Basic Info.
2. Select the AK invocation record you want to view and click Details to view the invocation details of that AK.
﻿
Alarms Associated with the Access Key in COS
1. On the AK Details page, click Associated Cloud Object Storage Alarms.
2. On the Associated COS Alarms page, all alarm information for the COS assets associated with the current AK is displayed.
3. Select the alarm for which you want to view details and click Details to view the detailed information of that alarm.
﻿
﻿

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

Asset Perspective	Description
COS Assets	Centers on COS assets (buckets) as the core resource dimension, integrates access data from source IP addresses and associated AKs to these assets, provides capabilities for asset access topology visualization, IP address/account precise tagging, and security policy rapid adjustment, and achieves centralized, fine-grained control over the access target side.
Call Source IP	Centers on the source IP address of the access initiator as the core control dimension, integrates the access data from this IP address to COS assets, provides capabilities for access topology visualization, IP address/account precise tagging, and rapid adjustment of IP address hiding/access control policies, and achieves centralized, fine-grained control over the access initiator.
Associated AK	Centers on the associated AK of the access credential as the core control dimension, integrates the access data from the AK to COS assets, provides capabilities for AK permission analysis, call behavior auditing, and rapid configuration of AK disablement/permission adjustment policies, and achieves centralized, fine-grained control over the access identity.

tencent cloud

Cloud Security Center

Asset List

COS Assets

COS Asset List

Enabling Exception Monitoring

Enabling Sensitive Data Identification

COS Details

Source IP Address

Source IP Address List

Source IP Address Details

Associated Access Key

Access Key Details

Access Key Call Records

Alarms Associated with the Access Key in COS

Help and Support