'Huawei's security hasn't improved,' a British government agency reports.
by
A British government agency established to verify Huawei's security issues said on October 1, 2020, 'Huawei's countermeasures against defects found in Huawei's network so far are limited. We released a report saying.
Huawei Cyber Security Evaluation Center (HCSEC) Oversight Board: annual report 2020
(PDF file) https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/923309/Huawei_Cyber_Security_Evaluation_Centre__HCSEC__Oversight_Board-_annual_report_2020.pdf
Britain says Huawei security failings pose long-term risk: govt report | Reuters
https://www.reuters.com/article/us-britain-huawei-idUSKBN26M64S
UK found flaw of'national significance' in Huawei tech, says report | ZDNet
https://www.zdnet.com/article/uk-found-flaw-of-national-significance-in-huawei-tech-says-report/
NCSC sees no'significant improvement' in Huawei's overall security practices
https://www.computerweekly.com/news/252489961/NCSC-sees-no-significant-improvement-in-Huaweis-overall-security-practices
The Audit Committee of the Huawei Cyber Security Evaluation Center (HCSEC) in the United Kingdom said on October 1st, 'We have identified a chronic problem with Huawei's software development. This issue poses a risk to the telecommunications business in the United Kingdom. Has been significantly increased, highlighting the need for continued control and mitigation measures in the future, 'Huawei's efforts to fix security issues provide only a' limited warranty. ' I showed the view.
HCSEC is an auditing body established by the UK Government under an agreement with Huawei to mitigate any security risks that Huawei products pose to the UK's network infrastructure. Since its establishment in November 2010, HCSEC has been conducting research on the safety of hardware and software of Huawei products as an independent organization from Huawei.
According to the 6th Annual Report submitted by the HCSEC Audit Committee, Huawei's security issues stem from basic engineering capabilities and cyber hygiene , not deliberately mixed in. That is. As a result, the report states, 'The National Cyber Security Center (NCSC) , which leads the HCSEC, believes that the flaws found in Huawei products are not the result of interference from Chinese authorities.' ..
On the other hand, HCSEC is concerned about Huawei's attitude toward security, and in the report, 'Insufficient thorough safety awareness of coding, including evidence that Huawei does not follow its own internal coding guidelines. Persistent evidence has been found that is still a problem, despite slight improvements over the last few years. '
The HCSEC then said, 'If an attacker is aware of Huawei's security vulnerabilities and has sufficient access to exploit them, UK network operations could be affected. It is sexual and in some cases may not work properly. '
Reuters said the HCSEC report said, 'The findings will add to the pressure surrounding Huawei, including US sanctions on Huawei and allegations that Huawei products are being used by Chinese authorities for espionage. Let's do it. '
A Huawei spokeswoman said, 'The HCSEC report acknowledges that while our reform process is in its infancy, some progress has been made in improving software engineering capabilities.'
Related Posts:
