This article introduces the security of DDS.
Network Isolation
It runs in a Virtual Private Cloud (VPC), isolated from other tenants to ensure data security.
Authentication
After connecting the instance in the DDS Management Console or using the database administrator account, you can set up access to other users and independent passwords for the database and also set up read, write and other permissions. When accessing a database instance, all users must connect with authentication information.
Access Control
You can set up a separate access security group for the DDS instance. After configuration, only IPs within the trustlist can access the DDS instance.
Data Protection
DDS supports SSL secure access links, auto data backup mechanisms, and embedded sensitive protection operations.
Security Monitoring
DDS provides monitoring of server and instance dimensions, such as I/O, connection count, and slow links. You can freely configure alarm policies to help you understand the real-time status of data instances.
Failover
When the master node of a replica set instance or cluster instance's Shard and ConfigServer nodes fails, the slave node will automatically take over and become the master node. Some of the resource pools with multiple availability zones (AZs) can be deployed across AZ to achieve cross-AZ disaster recovery.