Rules for Customer's Penetration Testing on Huawei Cloud

These rules help you evaluate the security of your cloud services without affecting other Huawei Cloud customers or the infrastructure of Huawei Cloud. Your penetration testing on Huawei Cloud shall comply with rules on this page and requirements stated in Huawei Cloud Customer Agreement.
Any penetration test that does not comply with these rules is considered unauthorized. We reserve the right to frozen the account involved and pursue legal action for such unauthorized penetration testing.

These rules apply only to customers who have purchased cloud services from Huawei Cloud. It does not include products or services in Huawei Cloud KooGallery.

Prohibited Activities

● Performing DoS or DDoS tests
● Performing automatic tests that may generate heavy traffic
● Performing ARP spoofing, DNS hijacking, or poisoning attacks
● Scanning or testing data or other assets of other Huawei Cloud customers
● Launching phishing or other social engineering attacks against Huawei employees
● Performing penetration testing on Huawei Cloud infrastructure
Permitted Activities

You can perform security evaluation and penetration testing on your service systems deployed on Huawei Cloud and Huawei Cloud services you purchase at anytime.