Help Center> Cloud Firewall> Service Overview> Security> Data Protection Technologies
Updated on 2022-11-15 GMT+08:00

Data Protection Technologies

CFW takes different measures to keep data secure and reliable.

Table 1 CFW data protection methods and features



Static data protection

CFW encrypts sensitive data in your website traffic to keep the data from leakage.

Protection for data in transit

Data is encrypted when it is transmitted between microservices to prevent leakage or tampering during transmission. Your configurations are kept secure when transmitted over HTTPS.

Data integrity verification

When the CFW process is started, the configuration data is obtained from the configuration center instead of local files.

Data isolation mechanism

CFW isolates its tenant zone from its management plane. Operation permissions for CFW are isolated by user. Your policies and logs are isolated from those of others.

Data destruction mechanism

To prevent information leakage caused by residual data, Huawei Cloud sets different retention periods based on the customer level. If the customer does not renew the subscription or recharge the account after the retention period expires, the data stored in the cloud service will be deleted and the cloud service resources will be released. CFW automatically detects cloud service subscription status and releases resources when the retention period expires.

Beyond that, CFW protects your website while making every effort to protect your privacy in accordance with applicable laws and regulations. Take intrusion prevention as an example. CFW detects traffic that matches threat signature library and scans for abnormal behavior only. CFW never collects or stores any user privacy data. For more privacy data usage and protection issues, see Privacy Statement.