Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Security Infrastructure

Huawei Opens Brussels Security Lab in Bid to Reassure EU

Chinese tech company Huawei on Tuesday opened a cybersecurity lab in Brussels, the heart of the European Union, as it tries to win over government leaders and fight back U.S. allegations that its equipment poses a national security risk.

Chinese tech company Huawei on Tuesday opened a cybersecurity lab in Brussels, the heart of the European Union, as it tries to win over government leaders and fight back U.S. allegations that its equipment poses a national security risk.

Company executives inaugurated the Huawei Cyber Security Transparency Centre, which will allow the wireless companies that are its customers to review the source code running its network gear.

The launch comes amid a standoff between the U.S. and China over Huawei Technologies, the world’s biggest maker of telecom infrastructure for new high-speed 5G networks.

The U.S. has been lobbying allied countries and companies to shun Huawei because of fears its equipment could facilitate digital espionage by China’s communist leaders.

The new lab in the Belgian capital gives Huawei a venue to reassure the EU’s policymakers about its cybersecurity credentials.

It opened a similar center in Bonn, Germany, in November and funds a government-run British testing site, the Huawei Cyber Security Evaluation Centre, that opened in 2010.

Huawei said the Brussels center will be a platform where government agencies, technical experts, industry associations, and standards organizations can collaborate on cybersecurity.

It will also be a place where Huawei’s customers – wireless and internet companies – can test the company’s networking equipment.

Advertisement. Scroll to continue reading.

That includes giving them access to Huawei’s source code — “our crown jewels,” John Suffolk, Huawei’s global cybersecurity and privacy officer told reporters.

Suffolk said that while Huawei lets telecom companies use the Brussels center’s facilities and access its software, it doesn’t necessarily know what they’re doing or searching for.

“It’s a little bit like a black box,” Suffolk said.

Europe is Huawei’s biggest market outside China, and the company hopes to play a key role in building the continent’s 5G networks, in competition with Scandinavian rivals Ericsson and Nokia. Fifth-generation mobile networks enable lightning fast download speeds and reduce signal lag, advances that will be used in smart factories, self-driving cars and remote surgery.

Western officials are worried that China’s cybersecurity law requires the company to cooperate with the country’s intelligence service. However, executives repeated their position that Huawei has never been asked to hand over sensitive information and would refuse to do so if asked. Neither would it install secret backdoors in its software.

“There’s no evidence,” said Vincent Pang, Huawei’s president for Western Europe.

Suffolk said there’s “some level of confusion” surrounding the interpretation of various countries’ cybersecurity laws.

“This is not uncommon and I think we’ll see this continue as time goes on,” he said.

Cyersecurity experts wondered whether the Brussels center was more a way for Huawei to press its public relations offensive against the U.S. campaign than for serious cyber protection.

“Simple auditing of source code, made in a limited capacity, and only at a small closed facility might not suffice to seriously establish the actual security level, and definitely not at a scale. But it is a nice demonstration of openness nonetheless,” said Lukasz Olejnik, a research associate at Oxford University’s Center for Technology and Global Affairs.

He said that creating dedicated and comprehensive cybersecurity standards and regulations would take a lot longer. He compared it with the new European data privacy regulations that took effect last year and were a “multi-year endeavor.”

The U.S. government’s campaign against Huawei has also included criminal charges against its chief financial officer, Meng Wanzhou, who the U.S. wants to extradite from Canada to face charges she misled banks about the company’s business with Iran.

Despite the U.S. pressure, there are signs that European governments and mobile companies are resisting a blanket ban on Huawei equipment. GSMA, the mobile industry’s trade group, has recommended a testing and certification program.

In an annual review of Huawei’s engineering practices published in July, Britain’s cybersecurity agency noted “shortcomings” that “exposed new risks in the U.K. telecommunication networks.” But none were deemed of medium or high priority.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Mike Dube has joined cloud security company Aqua Security as CRO.

Cody Barrow has been appointed as CEO of threat intelligence company EclecticIQ.

Shay Mowlem has been named CMO of runtime and application security company Contrast Security.

More People On The Move

Expert Insights

Related Content

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Management & Strategy

Hundreds of companies are showcasing their products and services this week at the 2023 edition of the RSA Conference in San Francisco.

Security Infrastructure

Security vendor consolidation is picking up steam with good reason. Everyone wants to improve security efficiency and effectiveness while paying for less.

Funding/M&A

Responding to Cyber Threats Against Critical Infrastructures: Wired Business Media Acquires Long Running ICS Cybersecurity Conference Series

Cloud Security

The term ‘zero trust’ is now used so much and so widely that it has almost lost its meaning.

Security Infrastructure

Instead of deploying new point products, CISOs should consider sourcing technologies from vendors that develop products designed to work together as part of a...

Audits

The PCI Security Standards Council (SSC), the organization that oversees the Payment Card Industry Data Security Standard (PCI DSS), this week announced the release...

Security Infrastructure

Comcast jumps into the enterprise cybersecurity business, betting that its internal security tools and inventions can find traction in an expanding marketplace.