Security & Reliability TiDB Cloud Lake offers enterprise-grade security and reliability features that safeguard your data throughout its lifecycle. From controlling who can access your data to protecting against network threats and recovering from operational errors, TiDB Cloud Lake's multi-layered security approach helps you maintain data integrity, compliance, and business continuity.
Security Feature Purpose When to Use Access Control Manage user permissions When you need to control data access with role-based security and object ownership Data Protection Policies Protect sensitive data at row and column level When you need row-level filtering, column-level masking, or both Audit Trail Track database activities When you need comprehensive audit trails for security monitoring, compliance, and performance analysis Network Policy Restrict network access When you want to limit connections to specific IP ranges even with valid credentials Password Policy Set password requirements When you need to enforce password complexity, rotation, and account lockout rules Authenticate with AWS IAM Role Use AWS IAM roles for authentication When you want to leverage AWS IAM for secure access to TiDB Cloud Lake Compliance & Security Ensure regulatory compliance When you need to adhere to industry standards and regulations Fail-Safe Prevent data loss When you need to recover accidentally deleted data from S3-compatible storage Recovery from Errors Fix operational mistakes When you need to recover from dropped databases/tables or incorrect data modifications