MPA

The MPA has established a set of best practices for securely storing, processing, and delivering protected media and content based on ISO and other security standards as well as industry best practices. These best practices are documented in "Content Security Best Practices – Common Guidelines" and "Content Security Best Practices – Application and Cloud/Distributed Environment Security Guidelines."

The former consists of 3 modules (management system, physical security, and digital security), 7 security areas, 49 security topics, and 261 control items, and the referenced standards include ISO 27001, ISO27002, NIST, CSA, ISACA, and SANS.

The latter consists of 2 modules (application security and cloud security), 6 security topics, and 69 control items, and the referenced standards include ISO 27001, ISO27002, OWASP, CSA, PCI DSS, NIST800-54, and SANS.

Huawei Cloud assesses itself against the requirements of each security area defined by the MPA, ensuring that it can provide you with secure, reliable cloud environments in compliance with the MPA's content security model and guidelines. In addition, Huawei Cloud documents MPA requirements and the measures taken to meet them in white papers for your reference.

Based on the two MPA documents, "Content Security Best Practices – Common Guidelines" and "Content Security Best Practices – Application and Cloud/Distributed Environment Security Guidelines", Huawei Cloud has developed two white papers explaining how it ensures compliance with MPA standards, with appropriate measures designed for each MPA requirement.