sb-as logo
Story image

Huawei cyber security white paper places onus on supply chain

21 Jun 2016

Huawei's "The Global Cyber Security Challenge" 2016 white paper was released last week, which identifies some of the security challenges facing the global supply chain.

The paper discusses how to ensure security issues and it also analyses practices adopted by supply chain experts, standards bodies across the world. The paper champions accelerated collaboration techniques to tackle the challenge, through networks and social progress.

The paper says open networks have been a catalyst for information flows, innovation opportunities and have lifted economic growth, particularly through supply chains.

The report says that there is a long, slow path from risk awareness to addressing it while increasing trust and assurance and reducing risk. It says that emerging information technology risks are not properly addressed.

Supply chains promote 'sustainable development' of the ICT industry, and Huawei says that supply chain management is more than providing on-time products and services, but also about approaching the product lifecycle with a view to minimise risk brought in by malicious actors or counterfeit components.

“While there is still no simple answer or solution to the cyber security challenge, it is increasingly apparent that there are steps the global community can take – as well as individual organisations – to drive demonstrable progress in reducing cyber security risk, including that of collaborating so as to reach an agreement on principles, laws, standards, best practices, norms of conduct, and protocols – with recognition that trust has to be earned and continuously validated. Huawei commits itself to supporting such an endeavour,” says Ken Hu, chairman of the board and chairman of the Global Cyber Security and User Privacy Committee of Huawei.

The paper goes into detail about Huawei's own supply chain security efforts, commended by figureheads such as Shola Taylor, Secretary-General of the Commonwealth Telecommunications Organisation, Bruce McConnell, global vice president of the EastWest Institute and Steve Nunn, president and CEO of The Open Group.

“Supply chain risk is a key element of the over-arching cyber security risks that an organisation must understand and manage in order to be successful. This is not just about ensuring that products and services will be there when needed, but it is also about a product lifecycle approach that minimizes risks. We must all build on the work that has been done to raise awareness of supply chain risk and what needs to be done about it, and work harder – collaboratively – to drive real progress to better address that risk," concludes Andy Purdy, white paper author and US cyber security officer, Huawei.

Story image
Palo Alto Networks extends cloud native security platform with new modules
Palo Alto Networks has announced the availability of Prisma Cloud 2.0, including four new cloud security modules, thus extending its Cloud Native Security Platform (CNSP). More
Story image
Financial institutions in APAC region to invest millions in fraud prevention
"The pandemic is creating a lot of uncertainty, but the majority of FIs in APAC recognise that an end to end fraud management platform is strategic to differentiating themselves from the highly disruptive landscape they are playing in."More
Story image
Zoom to begin rolling out end-to-end encryption
Available starting from next week, it represents the first phase out of four of the company’s greater E2EE offering, which was announced in May following backlash that the company was lax on its security and privacy.More
Story image
Surfshark rolls out WireGuard open source VPN protocol
When there is less code in a VPN, it is less susceptible to security vulnerabilities due to easier configuration and management, according to Surfshark.More
Story image
WhiteHawk ramps up cyber revenues with US$1.5 million contract extension
WhiteHawk Limited has been awarded a fiscal 2021 option extension of US$1.5 million (A$2.1M) under an existing seven-year contract.More
Story image
BlackBerry partners with ServiceNow for incident response management
BlackBerry has announced it has entered into a partnership with ServiceNow to integrate the BlackBerry AtHoc service within the Now platform for rapid crisis communications and IT service management. More