True to its commitment to consolidate openness, transparency, trust and collaboration in the digital world, Huawei today opened its largest global cybersecurity and privacy transparency center in Dongguan, in China, with representatives from the GSMA, SUSE, the British Standards Institution and regulators. from the United Arab Emirates and Indonesia speaking at the opening ceremony. It is now the seventh Transparency Center built by Huawei. Two years ago, Huawei opened a similar center in Brussels, with others located in the UK, Canada, Germany, Italy and the United Arab Emirates.
Along with the opening of the new center, Huawei also released its Product Cybersecurity Baseline, marking the first time the company has updated its Product Security Baseline and management practices. available to the entire sector. These actions are part of the company’s broader efforts to engage with customers, suppliers, standards organizations and other stakeholders to jointly strengthen cybersecurity across the industry.
Huawei has developed its Product Cyber Security Baseline which is results-based, universal, continuously optimized, non-discriminatory and mandatory after studying laws and regulations, market admission requirements of governments and customers, best practices industry and live network issues, while taking into account Huawei’s own requirements.
As part of Huawei’s end-to-end cybersecurity framework, the baseline, as a set of core security requirements, is integrated into Huawei’s business processes and strictly executed, to ensure product compliance in security, prevent security crises and minimize security incidents.
“Cybersecurity is more important than ever,” said Ken Hu, rotating chairman of Huawei, at the inauguration of the Dongguan center. “As an industry, we need to work together, share best practices and strengthen our collective capacities in governance, standards, technology and auditing. We need to give the general public and regulators a reason to trust the safety of the products and services they use every day. Together, we can find the right balance between security and development in an increasingly digital world ”.
Over the past few years, the digitalization of industry and new technologies like 5G and AI have made cyberspace more complex than ever, compounded by the fact that people have spent more of their lives online. throughout the COVID-19 pandemic. These trends have led to an increase in new cybersecurity risks.
Huawei has opened the new Global Cyber Security and Privacy Transparency Center in Dongguan to address these issues, providing industry stakeholders with a platform to share their e-governance expertise and work. together on technical solutions. The center is designed to demonstrate solutions and share experiences, facilitate communication and joint innovation, and support security testing and verification. It will be open to regulators, independent third-party testing bodies and standards bodies, as well as Huawei customers, partners and suppliers.
At the opening, HE Dr. Mohamed Hamad Al Kuwaiti, Head of Cyber Security in the United Arab Emirates, delivered a speech on the importance of cyber cooperation for a resilient and vibrant digital future. “A public-private partnership will be essential to establish collaboration between private, public and government entities to establish a digital oasis of global trust in the United Arab Emirates,” he said.
To foster a unified approach to cybersecurity in the telecommunications industry, organizations like the GSMA and 3GPP have also worked with industry stakeholders to promote NESAS security assurance specifications and independent certifications. These baselines have been widely accepted in the industry and will play an important role in the development and verification of secure networks.
Mats Granryd, Managing Director of the GSMA, spoke at the inauguration of Huawei’s new center. “The provision of existing and new services in the 5G era will depend heavily on the connectivity provided by mobile networks and will fundamentally depend on the security and trust of the underlying technology,” he said. “Initiatives such as the GSMA 5G Cybersecurity Knowledge Base, designed to help stakeholders understand and mitigate network risks, and NESAS, a company-wide security assurance framework. industry, are designed to help improve the security levels of network equipment in the industry ”.
At the event, Huawei also released its Product Cyber Security Baseline, the culmination of more than a decade of experience in product security management, incorporating a wide range of external regulations, technical standards and regulatory requirements. The baseline, along with Huawei’s other governance mechanisms, helps ensure the quality, safety and reliability of the company’s products. Over the years, Huawei has built more than 1,500 networks that connect more than three billion people in 170 countries and regions. None of these networks has ever experienced a major security incident.
According to Huawei, the benchmark covers 15 categories, 54 requirements and 112 specific implementation instructions and interpretations, ensuring the high quality, safety and reliability of Huawei products. It includes 4 categories of legal compliance requirements (backdoor prevention, prevention of malware and malicious behavior, protection of user privacy and protection of freedom of communication) and 11 categories of security and communication requirements. ‘functional assurance (including secure encoding, compilation, sensitive data protection, encryption, secure boot, integrity protection and lifecycle management).
“This is the first time that we have shared our security framework with the entire industry, not just major vendors,” said Sean Yang, director of Huawei’s Global Cyber Security and Privacy Protection Office. “We would like to invite all stakeholders, including customers, regulators, standards bodies, technology providers and test bodies, to join us in discussing and working on cybersecurity baselines. Together, we can continuously improve product safety across the industry ”.
At present, the industry still lacks a coordinated, standards-based approach, particularly with regard to governance, technical capacities, certification and collaboration.
“Cyber security risk is a shared responsibility,” concluded Ken Hu in his opening remarks. “Governments, standards organizations and technology providers need to work more closely to develop a unified understanding of cybersecurity challenges. It must be an international effort. We need to set common goals, align responsibilities and work together to build a trustworthy digital environment that responds to the challenges of today and tomorrow ”.
Huawei embarked on cooperative cybersecurity as early as 2000. There are now more than 3,000 cybersecurity R&D staff at Huawei. Additionally, Huawei’s annual R&D investment in cybersecurity and privacy represents approximately 5% of its total R&D spending.
Huawei’s Global Cyber Security and Privacy Transparency Center, located on the Dongguan campus, is Huawei’s largest cybersecurity and privacy center. It offers a platform for demonstration, verification, exchange and sharing of knowledge, and supports regional transparency centers.
Click here to download the Huawei Product Cybersecurity Reference.