The US continues to accuse Huawei of espionage, now urges allies to do the same
According to The Wall Street Journal, US intelligence has had data that Huawei possessed access to backdoors in network equipment through which spying can occur for more than a decade. In consequence, US officials are alleging that Huawei is a security threat and is illegally collecting information.
However, Huawei is actively refusing such allegations. In an interview with WSJ reporters, Huawei’s CEO, Ren Zhengfei, is comparing Huawei with a car manufacturer in the sense that it only sells the equipment and it's up to clients to decide what to put in the trunk. He states that the carriers manage the gadgets sold by Huawei and that the company doesn’t control the equipment.
When you are an infrastructure vendor in Europe, you are required by law to provide a built-in capability of a lawful interception of traffic, a function to be used by law-enforcement agencies, which allows access to communication after a warrant or a court order. Thus, all telecom-equipment makers have to create such a backdoor, but they are required to make sure they do not have access to it without consent of the network operator. Such access is to be granted by laws, governed by each country’s legislation.
That’s exactly where US officials are accusing Huawei of unlawful conduct. US officials, for example national security adviser Robert O’Brien, have stated they possess proof that Huawei has the capability to access sensitive and personal information via its systems. However, officials are refusing to say whether they have evidence that Huawei has been caught using this capability. Proof about this backdoor access has not been publicly disclosed, meanwhile US officials say that its existence has been observed since 2009.
In the past, the US stated that they did not need to offer any proof backing up the espionage accusations, given the fact that Huawei’s close ties to the Chinese government automatically classifies the company as a potential security threat. Officials also stated that, as a Chinese company, Huawei doesn’t have the possibility to not comply with any demands made by the Chinese government.
Recently, however, US officials have decided that they need to do more than just accuse Huawei of being a threat to national security. Some details about the acquired proof for the allegations have been shared with the United Kingdom and Germany.
Foreign countries have to decide whether they are willing to gamble with the alleged security threat in order to use Huawei’s high-quality equipment and competitive prices.
Last month, British officials decided they are still willing to allow Huawei’s network equipment to function in their country, in spite of the information provided by the US, and stated that the intel is nothing new and had already been analysed and taken into consideration.
London-based Vodafone Group PLC stated that there was no indication that network vendors had unauthorized access.
Meanwhile, some German officials have been convinced by the US about the alleged security threat, posed by Huawei, while others are not too worried about it.
Former NSA official, Curtis W. Dukes, who now works as a cybersecurity consultant, said the possibility for a vendor to gain unauthorized access into networks is present, but denied knowing of such occurrence.
US allegations of Huawei using lawful interception are nothing but a smokescreen – they don't adhere to any form of accepted logic in the cyber security domain. Huawei has never and will never covertly access telecom networks, nor do we have the capability to do so. The Wall Street Journal is clearly aware that the US government can't provide any evidence to support their allegations, and yet it still chose to repeat the lies being spread by these US officials. This reflects The Wall Street Journal's bias against Huawei and undermines its credibility.
Huawei's role as a telecoms vendor is to provide equipment that follows 3GPP/ETSI standards, just like every other vendor. We are obligated to follow industry-wide lawful interception standards like 3GPP's TS 33.107 standard for 3G networks, and TS 33.128 for 5G. This is where Huawei's obligations with regards to lawful interception end.
The actual administration and use of lawful interception interfaces is conducted solely by carriers and regulators. Interception interfaces are always located in protected premises on the operator's side, and they are operated by employees who are vetted by the government in the countries where they operate. Operators have very strict rules to operate and maintain these interfaces. Huawei doesn't develop or produce any interception equipment beyond this.
Huawei is only an equipment supplier. In this role, accessing customer networks without their authorization and visibility would be impossible. We do not have the ability to bypass carriers, access control, and take data from their networks without being detected by all normal firewalls or security systems. In fact, even The Wall Street Journal admits that US oﬃcials are unable to provide any concrete details concerning these so-called "backdoors."
Cyber security and user privacy protection are Huawei's top priorities. The remarks made by US officials completely ignore the huge investment and best practices of Huawei and carriers in cyber security risk management. We are very indignant that the US government has spared no efforts to stigmatize Huawei by using cyber security issues. If the US does discover Huawei's violations, we again solemnly request the US to disclose specific evidence instead of using the media to spread rumors."