Huawei opens Brussels code-check office: Hey! EU've got our guide – love Huawei

Here I stand, infosec in hand... turn my face to the wall


Huawei stopped fighting metaphorical fires today to lift the curtain on its Brussels Cyber Security Transparency Centre in a move to position the Chinese company as a driving force for new global security standards.

"We need to work together on unified standards. Based on a common set of standards, technical verification and legal verification can lay the foundation for building trust," said rotating chairman Ken Hu, giving the inauguration speech for the Huawei Cyber Security Transparency Centre (HCSTC) at Brussels' Palais des Academies this morning.

Huawei said in a statement that its aim with the HCSTC in Brussels was "to offer government agencies, technical experts, industry associations, and standards organizations a platform, where they can communicate and collaborate to balance out security and development in the digital era".

The centre will also act as a shop window for Huawei's security products, focusing on 5G, IoT and cloud, and "independent testing organisations" as well as telcos and nation states, which are, the company said, most welcome to use its "dedicated testing environments".

EU functionary Ulrik Trolle Smed, who works in the office of EU Security Commissioner Julian King, gave a speech at the event praising the opening of the centre. He said: "We are in favour of anything that leads to better cybersecurity because it's a collective responsibility."

Any chumminess displayed by EU institutions towards Huawei is likely to alarm the Anglosphere Five Eyes spying alliance. The Five Eyes countries – America, Australia, the UK, Canada and New Zealand – are almost all against allowing Huawei's network equipment to be installed in their core networks. The UK, however, has not closed the door on Huawei's involvement in next-generation mobile networks, despite its oversight panel delivering some muted criticism of its firmware security.

We believe that European regulators are on track to lead the international community in terms of cyber security standards and regulatory mechanisms. We commit to working more closely with all stakeholders in Europe, including regulators, carriers, and standards organizations, to build a system of trust based on facts and verification.

Ken Hu, Huawei rotating chairman

Hu called for a "collaborative effort" on cybersecurity from both governments and industry "because no single vendor, government, or telco operator can do it alone", going on to praise the GSMA's Network Equipment Security Assurance Scheme: "We believe that all stakeholders should get behind this framework. Ultimately, the standards we adopt must be verifiable for all technology providers and all carriers."

The HCSTC currently employs "around eight to 10 people" according to a company spokesman who gave a brief tour of its offices, located in a nondescript block on Gruinard 9. The company is pitching the centre as a UK-style code review facility, open to telcos and states alike, and a platform for influencing the European Union’s renewed drive to improve cyber security standards.

"At Huawei, we have the ABC principle for security: "Assume nothing. Believe nobody. Check everything," quipped Hu.

Even if some of the security world rejects the idea of Huawei doing the checking, it appears the Chinese company is deepening its ties with the European Union. ®

Similar topics

Narrower topics


Other stories you might like

  • Lenovo halves its ThinkPad workstation range
    Two becomes one as ThinkPad P16 stands alone and HX replaces mobile Xeon

    Lenovo has halved its range of portable workstations.

    The Chinese PC giant this week announced the ThinkPad P16. The loved-by-some ThinkPad P15 and P17 are to be retired, The Register has confirmed.

    The P16 machine runs Intel 12th Gen HX CPUs, but only up to the i7 models – so maxes out at 14 cores and 4.8GHz clock speed. The laptop is certified to run Red Hat Enterprise Linux, and can ship with that, Ubuntu, and Windows 11 or 10. The latter is pre-installed as a downgrade right under Windows 11.

    Continue reading
  • US won’t prosecute ‘good faith’ security researchers under CFAA
    Well, that clears things up? Maybe not.

    The US Justice Department has directed prosecutors not to charge "good-faith security researchers" with violating the Computer Fraud and Abuse Act (CFAA) if their reasons for hacking are ethical — things like bug hunting, responsible vulnerability disclosure, or above-board penetration testing.

    Good-faith, according to the policy [PDF], means using a computer "solely for purposes of good-faith testing, investigation, and/or correction of a security flaw or vulnerability."

    Additionally, this activity must be "carried out in a manner designed to avoid any harm to individuals or the public, and where the information derived from the activity is used primarily to promote the security or safety of the class of devices, machines, or online services to which the accessed computer belongs, or those who use such devices, machines, or online services."

    Continue reading
  • Intel plans immersion lab to chill its power-hungry chips
    AI chips are sucking down 600W+ and the solution could be to drown them.

    Intel this week unveiled a $700 million sustainability initiative to try innovative liquid and immersion cooling technologies to the datacenter.

    The project will see Intel construct a 200,000-square-foot "mega lab" approximately 20 miles west of Portland at its Hillsboro campus, where the chipmaker will qualify, test, and demo its expansive — and power hungry — datacenter portfolio using a variety of cooling tech.

    Alongside the lab, the x86 giant unveiled an open reference design for immersion cooling systems for its chips that is being developed by Intel Taiwan. The chip giant is hoping to bring other Taiwanese manufacturers into the fold and it'll then be rolled out globally.

    Continue reading

Biting the hand that feeds IT © 1998–2022