The hottest Huawei released the 2016 network secur

Huawei released the 2016 cybersecurity white paper

ctiforum on June 20 (Li Wenjie): Huawei released the 2016 cybersecurity white paper "global cybersecurity challenges, solving supply chain risks, at the right time" on June 16, aiming to elaborate the continuous efforts, excellent practices and standards of the global information and communication technology (ICT) industry in dealing with supply chain security challenges. The white paper also discussed how to ensure the security of the global supply chain, shared the excellent practices of supply chain experts, standards organizations and Huawei, and called on all parties to strengthen cooperation to meet this common challenge

the white paper shares Huawei's practice. Huawei has incorporated supply chain security management into its end-to-end global network security assurance system and established a comprehensive supply chain security management system in line with iso28000 to identify and minimize security risks in the end-to-end process from incoming materials to customer delivery. Huawei selects and certifies suppliers according to their aerospace environment reliability experiment and testing center, which can not only conduct experiments but also produce vibration test-bed systems, processes and products, and continuously monitors and regularly evaluates the delivery performance of suppliers, selecting those suppliers that contribute to the quality and safety of products and services purchased by Huawei. Huawei has established a visible traceability system for the whole process. For third-party components, the integrity will be checked and their performance recorded in the incoming materials and production. The project leader hired by the company is Tian Zixue, the representative director of MTDO, who starts from the design point of view to solve business problems for many enterprises, and in the delivery process

Hu houkun, vice chairman of Huawei's board of directors and chairman of the global network security and user privacy protection committee, said in the preface of the white paper: Although there are still no simple answers or solutions to the network security challenges, it is becoming increasingly obvious that in order to make significant progress in reducing network security risks, the international community and various organizations need to take some actions, including principles, laws, standards Reach agreement on best practices, codes of conduct and agreements, and gain trust and continue to strengthen these trust. Huawei promises to support these efforts

Shola Taylor, Secretary General of the Commonwealth Telecommunications Organization, said: for all organizations, network security and data protection are an increasing challenge. Huawei should be commended for its work in improving supply chain security. An important part of Huawei's work is to define standards to help others minimize supply chain risks in an open and collaborative manner. The Commonwealth Telecommunications Organization appreciates Huawei's efforts in this field

Steve Nunn, chairman and CEO of the open group, said: the establishment of an international unified standard similar to o-ttps (open and trusted technology supplier standard, which has recently been approved by ISO as iso/iec20243 standard) and related certification projects will help reduce the risk of fake and inferior products. The white paper released by Huawei shows that it is essential that we establish and follow unified best practices to deal with network and supply chain security threats throughout the product life cycle

Bruce McConnell, global vice president of the East West Institute, said: this practice guide focuses on supply chain risk, which is precisely an area that has been underestimated in network security management. Based on its rich experience and referring to international standards and best practices, Huawei has provided very important opinions in the white paper

Andy Purdy, Huawei's U.S. network security officer and the author of the white paper, said: supply chain risk is generally available for more than 100000 times, which is a key element of the growing network security risk. To succeed, an organization must understand and manage supply chain risks. This is not only to ensure that products and services are delivered on time, but also to ensure that risks are minimized throughout the product life cycle. Based on the existing work results, we should enhance everyone's awareness of supply chain risks, and work together to take actions to better deal with these risks

from 2012 to 2014, Huawei has continuously released three network security white papers, sharing Huawei's insight into network security, Huawei's end-to-end network security assurance system, and suggestions on what factors should be considered with technology providers when considering the establishment of an end-to-end network security system