The Motion Picture Association of America (MPAA) has established a set of implementation guidance for securely storing, processing and delivering protected media and content. This implementation guidance is designed to inform application and cloud service providers collaborating with MPAA members the content security requirements. Media companies use these security requirements to assess risk and security of their content. Tencent Cloud ensures that its management of customer content is in compliance with the MPAA Content Security Model through self-assessment.
The components of the model are based on the relevant ISO standards (ISO 27001 & ISO 27002), authoritative security standards (i.e. NIST, CSA, ISACA, and SANS), and industry implementation guidance. Among them, Tencent Cloud has also passed audits and certifications by third-party certification bodies for compliance standards such as ISO 27001, ISO 27017, ISO 27018, PCI DSS, and CSA STAR.
Overview of MPAA Standards
The MPAA implementation guidance establishes a unified security baseline for the media and entertainment industry, and is managed and updated by the MPA's wholly owned TPN (Trusted Partner Network), and obtains feedback from multiple industry stakeholders such as content owners, service providers, and TPN assessors. This implementation guidance includes the "General Guidance" and the "Application and Cloud Distributed Environment Security Guidance", which explain the implementation requirements and implementation steps of relevant controls.
For more information, please visit official website of MPAA.
