Updated on 2024-07-09 GMT+08:00

What Is MTD?

Managed Threat Detection (MTD) continuously checks source IP addresses and domain names in cloud service logs and alert you to potential malicious activities and unauthorized behaviors. MTD can monitor logs of IAM, DNS, CTS, OBS and VPC, all of which are global services in your account.

Powered by an AI engine, threat intelligence, and detection policies, MTD intelligently examines access behavior in logs of cloud services to detect threats, generate alarms, and provide remediation. With MTD, you can respond to alarms, handle potential threats, and harden service security in a timely manner to prevent major losses such as information leakage, keeping your accounts and service secure and stable.

MTD is to be taken offline. For details, see Huawei Cloud Managed Threat Detection (MTD) Will Be Taken Offline.

MTD's capabilities will be provided by SecMaster. To avoid any impact on your business, you are advised to submit a service ticket to switch your operations to SecMaster as soon as possible. This will ensure better support for you.

Detection Types

Table 1 lists the MTD detection types supported in each region.

Table 1 Detection types

Region

IAM Detection

DNS Detection

CTS Detection

OBS Detection

VPC Detection

AP-Bangkok

-

AP-Singapore

LA-MexicoCity

-

-

-

-

CN-Hong Kong

-

-

Detection Mechanism

MTD collects logs from IAM, DNS, CTS, OBS, and VPC and uses an AI engine, threat intelligence, and detection policies to continuously detect potential threats, malicious activities, and unauthorized behaviors, such as brute-force cracking, penetration attacks, and mining attacks. Figure 1 shows how MTD works.

Figure 1 Detection mechanism