DSPM (Data Security Posture Management)
DSPM (Data Security Posture Management) 是什么?
DSPM (Data Security Posture Management)A class of tools that discover, classify, and continuously monitor sensitive data across multi-cloud, SaaS, and data-lake environments, then surface posture risk such as exposed PII or over-permissioned datasets.
Data Security Posture Management (DSPM) emerged as a recognized category around 2022 to cover what CSPM and DLP missed: the data itself. A DSPM platform crawls cloud storage (S3, GCS, Azure Blob), databases (RDS, BigQuery, Snowflake, Redshift), data lakes, SaaS apps (Drive, Box, Salesforce), and unstructured stores, then classifies what's there (PII, PHI, payment card, source code, secrets) and links each data store to its access graph — which IAM principals, applications, and humans can reach it, and how. The output is a posture view: 'this Snowflake database contains EU PII, is accessible by a service account whose key is also in a public Lambda environment variable, and has not been read in 14 months.' DSPM features overlap with CSPM (configuration), CIEM (identities), and traditional DLP (egress), and the categories are converging into broader CNAPP and 'data-first' security platforms. Vendors in the space include Cyera, Dig (acquired by Palo Alto Networks), Sentra, BigID, Rubrik (Laminar), Wiz Data Security, and Symmetry.
● 示例
- 01
A DSPM scan finds an S3 bucket containing customer payment-card exports, with public read enabled and last-touched four months ago.
- 02
DSPM-driven alerts replace quarterly access reviews by continuously flagging shadow copies of regulated data in non-production environments.
● 常见问题
DSPM (Data Security Posture Management) 是什么?
A class of tools that discover, classify, and continuously monitor sensitive data across multi-cloud, SaaS, and data-lake environments, then surface posture risk such as exposed PII or over-permissioned datasets. 它属于网络安全的 云安全 分类。
DSPM (Data Security Posture Management) 是什么意思?
A class of tools that discover, classify, and continuously monitor sensitive data across multi-cloud, SaaS, and data-lake environments, then surface posture risk such as exposed PII or over-permissioned datasets.
DSPM (Data Security Posture Management) 是如何工作的?
Data Security Posture Management (DSPM) emerged as a recognized category around 2022 to cover what CSPM and DLP missed: the data itself. A DSPM platform crawls cloud storage (S3, GCS, Azure Blob), databases (RDS, BigQuery, Snowflake, Redshift), data lakes, SaaS apps (Drive, Box, Salesforce), and unstructured stores, then classifies what's there (PII, PHI, payment card, source code, secrets) and links each data store to its access graph — which IAM principals, applications, and humans can reach it, and how. The output is a posture view: 'this Snowflake database contains EU PII, is accessible by a service account whose key is also in a public Lambda environment variable, and has not been read in 14 months.' DSPM features overlap with CSPM (configuration), CIEM (identities), and traditional DLP (egress), and the categories are converging into broader CNAPP and 'data-first' security platforms. Vendors in the space include Cyera, Dig (acquired by Palo Alto Networks), Sentra, BigID, Rubrik (Laminar), Wiz Data Security, and Symmetry.
如何防御 DSPM (Data Security Posture Management)?
针对 DSPM (Data Security Posture Management) 的防御通常结合技术控制与运营实践,详见上方完整定义。
DSPM (Data Security Posture Management) 还有哪些其他名称?
常见的别称包括: Data Security Posture Management, Cloud data security。
● 相关术语
- cloud-security№ 280
CSPM(云安全姿态管理)
一类持续将云账户与最佳实践和合规基线进行比对,以发现并修复配置错误的工具。
- cloud-security№ 187
CIEM(云基础设施权限管理)
一种用于发现、分析并精简云环境中身份与权限的安全实践及工具类别。
- privacy№ 306
数据分级
按敏感程度和价值对数据进行标记的过程,以便一致地应用相应的保护、处理与保留控制。
- cloud-security№ 214
CNAPP(云原生应用保护平台)
一种集成式安全平台,融合 CSPM、CWPP、CIEM、IaC 扫描与运行时检测,用于保护云原生应用从构建到运行时的全过程。
- privacy№ 308
数据丢失防护 (DLP)
在终端、网络、邮件和云服务中检测并阻止敏感数据未经授权外泄的一组技术与策略。
- cloud-security№ 204
云端数据外泄
未经授权将数据从云账户复制或传输出去,通常通过对象存储 API、快照、跨账户复制或攻击者控制的账户实现。