Founded in 1996, Chunghwa Telecom is Taiwan's largest and leading telecommunication service provider. The service it provides covers fixed networks, mobile networks, and data communications.
Due to increasing network threats and the need for cyber defense, Chunghwa Telecom has established its own Secure Operations Center (SOC) and cybersecurity team, providing network-based cybersecurity services using network and cloud technologies that could mitigate attacks and threats effectively. Also, by leveraging the professional R&D resources of Chunghwa Telecom's Telecommunications Laboratories, it has developed its own Identity and Access Management (IAM), Endpoint Management, Personal Data Protection Law-related products.
Chunghwa Telecom's Cybersecurity Team is composed of experienced and certified experts, providing professional cybersecurity consulting service and also the total solutions to help our customers develop and execute its information security policies and strategies, strengthening its resilience against malware and intrusion. It has also obtained ISO/IEC 27001:2013, 27011, and 17025 international certifications issued by the British Standards Institute (BSI), proving its competitiveness as an international cybersecurity service provider.
Using telecom-grade web application protection appliances optimized by Chunghwa Telecom's professional cybersecurity consultants, HiNet WAF provides a web security solution that can effectively filter attacks targeting web applications, including OWASP Top 10 risks, BOT attacks, zero-day exploit attacks, maintain threat to the websites and systems of the enterprise under control. It uses proxy architecture to provide service, the customer only needs to change the DNS setting to direct traffic to HiNet WAF service.
By deploying DDoS mitigating appliances and developing multi-layer DDoS defense mechanism on HiNet network backbone, HiNet DDoS Protection Service could effectively block massive DDoS attack network packets (e.g. ICMP flood, UDP flood, SYN flood… etc.), thus preventing the exhaustion of the enterprise's network resources and help mitigating congestion caused by the DDoS attacks.
HiNet RiskEye service can analyze risks and vulnerabilities from outside of the enterprise, indicating possible ways to reduce these risks. The customer provides the domain name of their company, HiNet RiskEye service will then collect information, perform risk evaluation, and generate threat evaluation report. HiNet RiskEye is a continuous, non-intrusive monitoring service, and the client does not need to alter the enterprise's network architecture.
HiNet Advanced Network Defense System (ANDs, formerly known as HiNet New-Generation Firewall) is a network security service leveraging Next-Generation Firewall (NGFW) technologies by global cybersecurity leader Palo Alto Networks, providing high performance, high stability, and high effectiveness cybersecurity services to the clients. It can block network attacks, malware, malicious network activities, inappropriate content from entering the enterprise network, thus reducing the chance of being compromised. It also provides additional application control, country-based network flow control, file transfer control, further ensuring the information security of the enterprise.
Enterprise Cyberthreat Gatekeeper is a cybersecurity service that combines endpoint and network security solutions. It can block botnet, Command and Control (C2), ransomware traffic on the network side, reducing the risks of being infected. The client can also manually download the analyzing program provided by Enterprise Cyberthreat Gatekeeper, to detect potential threats on the endpoint. It also provides an interface that allows the client to upload suspicious files, documents, or archives to the system, then these files will be processed and analyzed in the sandbox to determine if it is a threat.
Enterprise Cyberthreat Gatekeeper provides visualized statistical monthly and yearly reports, helping the enterprise to identify potential risks at an early stage.
The "Secure Email Certificate Service" utilizes the technology of digital signatures, which can help enterprises/individuals to quickly and easily identify whether the emails come from the company or your organization, achieve the effect of the real-name system of emails, avoid identity forgery, and effectively respond to the ever-changing Information security threats such as: Internet fraud, face changing fraud (BEC), phishing emails, social engineering attacks, etc., make sending and receiving letters more secure and reliable. Features of this service include:
■Convenience of application: Online application, online review, and online issuance, after the identity is confirmed, Chunghwa Telecom will issue a secure email certificate for your organization.
■Easy to import: After obtaining the certificate, you can import it into the personal computer or server system, and use the supported email sending software or program development kit to send signed emails.
■Mature technology: S/MIME certificate application has been developed for decades, and major mail software and servers are highly supported. Chunghwa Telecom is the first certificate organization in China to develop certificate-related services and master core technologies.
■Remarkable effect: The emails that have been signed and stamped can be used to check the source of the emails (real-name system of emails) and whether the prompt content has been modified in many supporting email software and services, effectively reducing the risk of fraud for users. "
This service is used to establish a secure channel between the client and the server to prevent data from being intercepted or tampered with by hackers during transmission, so as to protect the personal data (such as credit card numbers, account numbers, passwords, etc.) transmitted by network users. Smart data). Chunghwa Telecom has built its own certificate center. The SSL certificate service has high technical autonomy and is not restricted by foreign technology. It has been approved by the Ministry of Economic Affairs and can provide various types of SSL certificate certificate issuance services in Taiwan, including: single domain / Multi-domain/universal domain certificate.Service features:
Chunghwa Telecom utilizes many features of blockchain technology to plan the application services of blockchain and provide solutions for different customers, such as:
1. Data storage: The data is stored in the blockchain, which ensures the integrity of the data and is easy to verify, making the data more credible and suitable for government agencies to disclose information. For example: public certificate deposit, or contract document deposit
2. Commercial supply chain linking financial system: The information systems of different manufacturers in the commercial supply chain are integrated through the blockchain system, and the bank's corroborating information is provided by the characteristics of synchronization and non-tampering. Can replace existing financial trust mechanisms
3. Intelligentization of travel inconvenience insurance contracts: Use blockchain technology to intelligently contract insurance contracts. When the insurance is performed, the claims settlement process can be automated, and the claim notice procedure can be started quickly.
4. Logistics service: The process of warehousing, logistics and return will be stored as evidence to ensure that the information in the process of freight transportation can be provided to the entrusting customer correctly and clearly, and the cost can be settled immediately.
5. Lucky draw platform: The lottery rules can be implemented with smart contracts, the lottery results will be stored in the blockchain, and all processes are open, transparent and verifiable.
HiNet Cybersecurity Fleet is the product designed for enterprise customers, providing optic-fiber fixed network combined with multiple cybersecurity solutions, including:
A. Network cybersecurity service: Advanced Network Defense System (ANDs), DDoS attack mitigation, spam e-mail filtering.
B. Client cybersecurity solution: Next-Generation Firewall (NGFW), Unified Threat Management (UTM), Server Load Balancer (SLB)... etc.
C. Endpoint cybersecurity solution: antivirus, anti-ransomware solutions.