ISO/IEC 27017

The international standard and guidelines for information security controls applicable to the provision and use of cloud services

Frequently asked questions about ISO/IEC 27017

Frequently asked questions about ISO/IEC 27017

Terms & Conditions

活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理

活动时间: 2020年8月12日-2020年9月11日

活动期间,华为云用户通过活动页面购买云服务,或使用上云礼包优惠券在华为云官网新购云服务,累计新购实付付费金额达到一定额度,可兑换相应的实物礼品。活动优惠券可在本活动页面中“上云礼包”等方式获取,在华为云官网直接购买(未使用年中云钜惠活动优惠券)或参与其他活动的订单付费金额不计入统计范围内;

Ok
  • What's ISO/IEC 27017?

    ISO/IEC 27017 is an international standard and code of practice for information security controls based on ISO/IEC 27002 for cloud services. Huawei Cloud has earned ISO/IEC 27017 certification, which certifies its ability to provide a secure, reliable cloud environment with all the appropriate information security controls in place.


    In addition, Huawei Cloud invites third-party organizations to periodically review its information security management systems based on changing conditions. This ensures that Huawei Cloud services are always protected by industry-leading information security management practices.

  • Which data centers are covered by Huawei Cloud's ISO/IEC 27017 certification?

    The ISO/IEC 27017 certification covers over 40 data centers belonging to Huawei Cloud globally, plus operation and maintenance services for them, including the provision of operation and maintenance services for Huawei Cloud data centers based on third-party IDCs, as well as those for Huawei Cloud's self-built data centers. You can download Huawei Cloud's ISO/IEC 27017 certificate from Compliance Certificates.

  • Which Huawei Cloud services are covered by ISO/IEC 27017 certification?

    The ISO/IEC 27017 certification covers over 150 Huawei Cloud services including, but not limited to, Advanced Anti-DDoS (AAD), Web Application Firewall (WAF), Data Encryption Workshop (DEW), and Database Security Service (DBSS). You can download Huawei Cloud's ISO/IEC 27017 certificate from Compliance Certificates.


    If you would like to learn more about our products, please contact us.

  • Can my organization become ISO/IEC 27017-certified automatically by using Huawei Cloud?

    Although Huawei Cloud has earned ISO/IEC 27017 certification and provides you with secure and reliable cloud services on this basis, using services provided by Huawei Cloud does not certify your organization's compliance with ISO/IEC 27017. ISO/IEC 27017 certification requires us to establish, implement, maintain, and continuously improve the cloud-based information security management system of our organizations based on the ISO/IEC 27017 guidelines, standards, and best practices. To assess your own system and get your organization certified, you can invite an independent third-party certifying body.