Cloud Data Loss Prevention (Cloud DLP) 現已併入機密資料保護。API 名稱維持不變:Cloud Data Loss Prevention API (DLP API)。如要瞭解構成 Sensitive Data Protection 的服務,請參閱「Sensitive Data Protection 總覽」。
您可以使用 VPC Service Controls,控管機密資料防護服務存取資料的方式。您可以透過 VPC Service Controls,為專案和資源 (包括 Sensitive Data Protection 資源) 定義安全範圍。這項功能可讓您控管與 Sensitive Data Protection 的通訊,以及 Sensitive Data Protection 與其他 Google Cloud 服務之間的通訊。
VPC Service Controls 為您的Google Cloud 資源提供額外的安全性,以降低資料遭到竊取的風險。您可以透過 VPC Service Controls 將專案加入服務範圍內,如此一來,源自服務範圍外的要求就無法存取相關資源及服務。
[[["容易理解","easyToUnderstand","thumb-up"],["確實解決了我的問題","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["難以理解","hardToUnderstand","thumb-down"],["資訊或程式碼範例有誤","incorrectInformationOrSampleCode","thumb-down"],["缺少我需要的資訊/範例","missingTheInformationSamplesINeed","thumb-down"],["翻譯問題","translationIssue","thumb-down"],["其他","otherDown","thumb-down"]],["上次更新時間:2025-09-04 (世界標準時間)。"],[],[],null,["# Securing Sensitive Data Protection resources\n\nUsing VPC Service Controls, you can control how Sensitive Data Protection accesses your\ndata. VPC Service Controls enables you to define a security perimeter around\nyour projects and resources, including Sensitive Data Protection resources. This\nlets you control communication to Sensitive Data Protection and between\nSensitive Data Protection and other Google Cloud services.\n\nVPC Service Controls provides additional security for your\nGoogle Cloud resources to help mitigate the risk of data exfiltration.\nUsing VPC Service Controls, you can add projects to service perimeters that\nprotect resources and services from requests that originate outside the\nperimeter.\n\nTo learn more about service perimeters, see the [Service perimeter\nconfiguration page](/vpc-service-controls/docs/service-perimeters) in the\n[VPC Service Controls documentation](/vpc-service-controls/docs/overview).\n\nSet up a service perimeter around Sensitive Data Protection\n-----------------------------------------------------------\n\nTo learn how to set up a new service perimeter to prohibit external access to\nSensitive Data Protection resources, follow the instructions in [Creating a service\nperimeter](/vpc-service-controls/docs/create-service-perimeters). Be aware of\nthe following Sensitive Data Protection-specific options:\n\n- When you're asked to add the projects that you want to secure, select the project (or projects) that contains the Sensitive Data Protection resources that you want to protect.\n- When you're asked to specify the services that you want to secure within the perimeter, type `dlp` into the **Filter services** field, and then choose **Sensitive Data Protection** from the list.\n\n| **Note:** When you secure Sensitive Data Protection inside a service perimeter, be aware that any services that Sensitive Data Protection interacts with will need to be secured within the same perimeter."]]