Docs
uhids
Introduction to Architecture and Principles

Architecture and Principle Introduction

UHIDS (Host Intrusion Detection System) is a server security product launched by the UCloud Global Security Center. UHIDS mainly consists of two parts: the UHIDS-Server side and the UHIDS-Agent side. By installing lightweight Agent on cloud hosts and linking rules, logs, and events with the cloud-based UHIDS-Server side, it monitors the security of the cloud hosts in real-time and ensures the safety of the cloud hosts.

The server types supported by UHIDS include:

  • CentOS
  • Ubuntu
  • Debian
  • RedHat
  • Open Suse
  • Gentoo

By transmitting the relevant data of the server to the interface server in an encrypted manner, the interface server filters risk data and intrusion data into different clusters for analysis. The results of the analysis are stored in the database. All data in the database are integrated into a portal database for console page invocation. If user configured alert prompts, the data of alerts will be sent to the user in real-time through email or SMS.

Main FunctionsSecurity baseline check