Germany Refuses To Ban Huawei, Citing Lack of Real Evidence

hackingbear writes: Germany's IT watchdog has expressed skepticism about calls for a boycott of Chinese telecoms giant Huawei, saying it has seen no evidence the firm could use its equipment to spy for Beijing, news weekly Spiegel reported. "For such serious decisions like a ban, you need proof," the head of Germany's Federal Office for Information Security (BSI), Arne Schoenbohm, told Spiegel, adding that his agency had no such evidence. The U.S. has been pressuring German authorities for months to drop Huawei, according to people familiar with the matter, but the Germans have asked for more specific evidence to demonstrate the security threat. German authorities and telecom executives have yet to turn up any evidence of security problems with Chinese equipment vendors, according to a person familiar with the matter.

Separately, at a (secret lobster-themed) meeting in Canada in July 2018, espionage chiefs from Australia, Canada, New Zealand, the U.K. and the U.S. -- all signatories to a treaty on signals intelligence, and often referred to as the "Five Eyes" -- agreed to do their best to contain the global growth of Chinese telecom (vendor) Huawei, the Australian Financial Review reported (paywalled). On the other hand, documents leaked by WikiLeaks and Snowden claimed that the NSA, the leader of the Five Eyes, tapped German Chancellery for decades and bugged routers made by Cisco, the leading American networking equipment vendor.

It's a network design question.

[Sique]

What would happen if you route the traffic through your network in a way that it always goes from a Huawei to a Cisco and from a Cisco to a Huawei? Will now the NSA know what the Chinese are spying at, and the Chinese get all the INTEL NSA is looking for?

Or will the Huawei block all steganographically embedded traffic to the NSA, while the Cisco deflects all secret traffic to the Chinese Ministry of State Security?

What a conundrum!

It is about the future - not right now.

[willy_me]

The problem that Huawei potentially brings is that the Chinese government could force them to embed spying functions into future firmware updates. Such a move would be difficult to counter once a country is highly reliant on Huawei for providing cell services. I am not suggesting that Huawei wants to so - but the Chinese government could easily dictate that they do so. In most other countries such requests would be challenged in court. For example, like how Apple refused to unlock a shooters iPhone a couple of years back. In China, we would never even know.

Re:Nice one

[bill_mcgonigle]

The NSA doesn't care about Chinese spying. They care about people using network gear they can't get a foothold in.

There are dozens of Snowden files on these topics.

Re:And why not?

[AHuxley]

The BND is always happy to work with the NSA and GCHQ. When it was for West German. Now as Germany.
The German esprit de corps in its elite mil/police units is with always the USA, not with any random German gov/mil.
The CIA and NSA always looked after generations of post ww2 German staff to a much better standard than any West German and later German gov/mil did.

Why? Most West German gov and parts of the West German mil spied for East Germany, the Soviet Union.
So the NSA always ensured its "Germans" after WW2 stayed totally loyal to the USA, not any "West" and later "German" political system.
Any "German" gov can pass "laws", the BND will always respond to the NSA and GCHQ first.

The same goes for most of the other clandestine German gov units.
The USA worked on building loyalty to the USA in the German mil for decades. Starting in West Germany and now in Germany.

Re:And why not?

[AmiMoJo]

Huawei has spent a lot of money on independent code audits, and allows certain people to view the source code themselves (mainly government orgs and very large customers). What has Cisco done, other than get hit with literally hundreds of critical vulnerabilities, often backdoor accounts and hard coded passwords?

At least Huawei are trying. We know for a fact that the NSA targets Cisco gear and they have done very little about it.