[prev in list] [next in list] [prev in thread] [next in thread]
List: dailydave
Subject: [Dailydave] The Huawei Paper
From: Dave Aitel <dave () immunityinc ! com>
Date: 2012-10-09 15:43:58
Message-ID: 5074463E.3080908 () immunityinc ! com
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
[Attachment #4 (multipart/alternative)]
I have this section in the Ottawa keynote called "Profiles in Courage",
and one of the people in it is Huawei Global Security Officer John
Suffolk. Justin Seitz goes into some of the issues around Huawei's
evisceration this week in the blog post here:
http://cybersecpolitics.blogspot.com/2012/10/embedded-hacking.html . But
at some point soon, I think we'll see a bit of an exodus of western
executive talent from Huawei. Because the report is damning. Basically
it says "No way are we letting Huawei or ZTE have any part of the market
in the States. They operate as a branch of the Chinese government."
I think Huawei's own prebuttal
<http://www.huawei.com/ilink/en/download/HW_187368> confuses the issue
with supply chain issues, which are, as they point out, a moot point
when everyone builds their equipment in China. To quote John Suffolk:
/The world has probably lost more confidential records than there
are people on the planet, and it is easy to get the //impression
that there are more breaches of security each year than there are
drops of rain in a storm.
/
Ok, I admit, I don't think John Suffolk himself wrote that document. But
regardless, his name is on it, and right now, the US Government has come
out saying "Huawei is one big trojan horse" and he's either a working
part of it, or completely ignorant of what his company is doing. Neither
is what someone is going to want on their Linked-In profile
<http://www.linkedin.com/pub/john-suffolk/0/b72/b21?trk=pub-pbmap>. :>
-dave
--
INFILTRATE - the world's best offensive information security conference.
April 2013 in Miami Beach
www.infiltratecon.com
[Attachment #7 (text/html)]
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#FFFFFF" text="#000000">
I have this section in the Ottawa keynote called "Profiles in
Courage", and one of the people in it is Huawei Global Security
Officer John Suffolk. Justin Seitz goes into some of the issues
around Huawei's evisceration this week in the blog post here: <a
href="http://cybersecpolitics.blogspot.com/2012/10/embedded-hacking.html">http://cybersecpolitics.blogspot.com/2012/10/embedded-hacking.html</a>
. But at some point soon, I think we'll see a bit of an exodus of
western executive talent from Huawei. Because the report is damning.
Basically it says "No way are we letting Huawei or ZTE have any part
of the market in the States. They operate as a branch of the Chinese
government."<br>
<br>
I think Huawei's <a
href="http://www.huawei.com/ilink/en/download/HW_187368">own
prebuttal</a> confuses the issue with supply chain issues, which
are, as they point out, a moot point when everyone builds their
equipment in China. To quote John Suffolk:<br>
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<blockquote>
<div class="page" title="Page 10">
<div class="layoutArea">
<div class="column">
<p><i><span style="font-size: 10.000000pt; font-family:
'FrutigerNextLT'; font-weight: 300">The world has
probably lost more confidential records than there are
people on the planet, and it is easy to get the
</span></i><i><span style="font-size: 10.000000pt;
font-family: 'FrutigerNextLT'; font-weight: 300">impression
that there are more breaches of security each year
than there are drops of rain in a storm.<br>
</span></i></p>
</div>
</div>
</div>
</blockquote>
<div class="page" title="Page 10">
<div class="layoutArea">
<div class="column"><span style="font-size: 10.000000pt;
font-family: 'FrutigerNextLT'; font-weight: 300"></span>Ok,
I admit, I don't think John Suffolk himself wrote that
document. But regardless, his name is on it, and right now,
the US Government has come out saying "Huawei is one big
trojan horse" and he's either a working part of it, or
completely ignorant of what his company is doing. Neither is
what someone is going to want on their <a
href="http://www.linkedin.com/pub/john-suffolk/0/b72/b21?trk=pub-pbmap">Linked-In
profile</a>. :><br>
<br>
-dave<br>
<br>
<br>
</div>
</div>
</div>
<pre class="moz-signature" cols="72">--
INFILTRATE - the world's best offensive information security conference.
April 2013 in Miami Beach
<a class="moz-txt-link-abbreviated" \
href="http://www.infiltratecon.com">www.infiltratecon.com</a> </pre>
</body>
</html>
["signature.asc" (application/pgp-signature)]
_______________________________________________
Dailydave mailing list
Dailydave@lists.immunityinc.com
https://lists.immunityinc.com/mailman/listinfo/dailydave
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic