The annual report from the Huawei Cyber Safety Analysis Centre (HCSEC) oversight board factors out “vital technical points” in Huawei’s engineering course of that result in new telecom dangers. Moreover, Huawei failed to handle safety issues raised by the board in final 12 months’s report. These issues centered round software program improvement. As we reported then, Huawei was utilizing an outdated model of Wind River’s VxWorks, a real-time working system. The model was set to lose entry to safety updates in 2020, which may open the UK to cyber assaults.
In response, Huawei informed Reuters that it takes these issues “very severely,” and that the report offers “very important enter for the continued transformation of our software program and engineering capabilities.” In line with Reuters, final 12 months, Huawei pledged to spend greater than $2 billion to handle the safety points. Nevertheless, it warned that the method may take as much as 5 years.
On account of these new and present issues, the oversight board stated it may possibly “present solely restricted assurance that the long-term safety dangers could be managed within the Huawei tools presently deployed within the UK.” There is not any indication of what motion, if any, the UK would possibly take, however as we have reported beforehand, the nation tends to favor mitigating dangers versus banning Huawei gear altogether. On the very least, the report substantiates the alarms the US has been sounding round Huawei’s expertise.