Huawei enables remote access of source code in Brussels

2019-03-06 10:57:57

Xinhua, March 6, 2019

Chinese technology firm Huawei unveiled its Cyber Security Transparency Centre in Brussels to public on Tuesday, allowing outsiders to access Huawei's source code remotely.

The centre "will showcase Huawei's end-to-end cyber security practices," and "facilitate communication between Huawei and key stakeholders on cyber security strategies and end-to-end cyber security and privacy protection practices," the company said in a statement.

Most crucially, the centre is open to customers and independent third-party testing organizations, Huawei said, where "they are invited to perform fair, objective, and independent security tests and verifications according to industry-recognized cyber security standards and best practices."

Dozens of journalists from across Europe attended a guided tour of the centre in the morning.

"These centres are equipped with dedicated testing environments, to provide customers and third parties with Huawei products, software, technical documents, testing tools, and necessary technical support," according to the statement.

That includes access to Huawei's source code, or in the words of John Suffolk, Huawei's global cybersecurity and privacy officer, "our crown jewels."

Huawei enables tests and verifications of similar sorts in other cyber security centers across the world, including in Britain, Germany, Canada's Toronto and its headquarter Shenzhen in China.

In a speech at the opening ceremony of the centre, Huawei's Deputy Chairman Ken Hu called for common cyber security standards.

"As a whole, the industry lacks a unified set of technical standards for security, as well as systems for verification. This is complicated by globalization of the value chain. Digital products include components from many different countries, with many different standards, or no standards at all," Hu said.

"There is an urgent need to invest in security standards and verification systems at the national level, as well as professional resources and skills," Hu said.

Hu applauded the General Data Protection Regulation (GDPR), a European Union law on digital data that came into effect last year, saying it "sets clear standards, defines responsibilities for all parties, and applies equally to all companies operating in Europe."

"We believe that European regulators can also lead the way on similar mechanisms for cyber security," Hu said.

Huawei is in support of - and believes "all stakeholders should get behind" - a voluntary security assurance scheme called NESAS(The Network Equipment Security Assurance Scheme), Hu said.

NESAS is jointly defined by 3GPP, which results from collaboration between groups of telecoms standard associations, and GSMA, a body representing global mobile operators.