Slashdot Mirror

← Back to Stories (view on slashdot.org)

S. Korea Diverts Network From Huawei Networks

Posted by timothy on from the but-the-marines-are-always-saying-huawei dept.

An anonymous reader writes with this excerpt from The Verge: "The South Korean government has decided to route sensitive data away from networks operated by Huawei, amid longstanding fears from the U.S. that the Chinese company's infrastructure could be used to spy on communications. As the Wall Street Journal reports, the U.S. had been urging its South Korean allies to route government communications away from Huawei networks, claiming that the infrastructure could be used to spy on communications with American military bases there. As a result, Huawei equipment will not be used at any American military base in South Korea. The Obama administration denies playing a role in the decision, and South Korean officials have not commented. The Journal reports that the White House made a point of keeping the talks private because it didn't want to be seen as meddling in its ally's business affairs."

6 of 76 comments (clear)

  1. Who cares by boorack · · Score: 3, Informative

    Thank tho Snowden we now know that Cisco is even worse in that regard. So the only thing one can choose is who will be sucking one's data - US or China. There best way to keep networks safe is to roll one's own equipment (eg. PC-based with OpenBSD or something, sourced from local vendor) but it has its own limitations.

    1. Re:Who cares by Zontar+The+Mindless · · Score: 3, Funny

      While communicating with the US, choose Cisco. While communicating with China, choose Huawei.

      Do it the other way round. That'll keep everybody extremely honest.

      --
      Il n'y a pas de Planet B.
    2. Re:Who cares by wonkey_monkey · · Score: 4, Interesting

      Thank tho Snowden we now know that Cisco is even worse in that regard.

      Do we? Really?

      --
      systemd is Roko's Basilisk.
  2. Re:Use Cisco instead... by jonwil · · Score: 3, Interesting

    Maybe the REAL reason that the US and its allies hate Huawei is because unlike Cisco or Juniper or HP or Ericsson or whoever, they cant put backdoors in the Huawei gear.

  3. Re: Use Cisco instead... by chill · · Score: 4, Informative

    Uh, no. You just read the *headlines* on Snowden articles and not the details, didn't you?

    Backdooring Cisco or Juniper equipment required physical access or someone to upload a Trojan firmware.

    Huawei has a *remote upgrade* feature that allows remote firmware programming. They are very..."user" friendly.

    --
    Learning HOW to think is more important than learning WHAT to think.
  4. Re: Use Cisco instead... by EmperorArthur · · Score: 4, Informative

    Huawei firmware is not known for its quality. It has so many nasty bugs and security holes, the remote firmware programming interface is just a safer way to do it.

    Cisco and Juniper are much better (at least their boxes crash or do idiotic things a lot less than Huawei boxes), but still not anywhere close to safe enough for the job, as one can easily check by hunting for C and J firmware exploits in several sites.

    I always point to this video when people ask what my big deal with Huawei is. The takeaway, they found early 1990s bugs and security everywhere, including all memory being world accessible and mapped read, write, execute. That means you just need an exploit, no privilege escalation necessary. Also, not only are these exploits easy to find, Huawei doesn't publish CVEs or changelogs for their new firmware. Combine that with most debugging features only being available in Chinese.... Yeah, I'll pass.

    http://www.youtube.com/watch?v...

    --
    So lets pretend that we've just completed writing this code, as opposed to having just completed sabotaging it -Altera