OSS security configurations-Alibaba Gov Cloud-阿里云帮助中心

Object Storage Service (OSS) is suitable for storing various types of static resources. To prevent unauthorized access to your OSS resources, OSS provides several security features. You can also integrate security products for enhanced protection.

Access control: Set access control list (ACL) policies to restrict access to OSS and improve the security of your storage resources. Store static application resources, such as images, CSS, and JS files, in an OSS bucket and set the bucket permission to public-read. For all other resources, set the bucket permission to private and use AccessKey pair authentication.
Security management: OSS supports various security management features, including the following:
Security products: You can combine Anti-DDoS Pro and Anti-DDoS Premium with WAF to defend against DDoS flood attacks and enhance application security.