[prev in list] [next in list] [prev in thread] [next in thread] 

List:       dailydave
Subject:    [Dailydave] The Huawei Paper
From:       Dave Aitel <dave () immunityinc ! com>
Date:       2012-10-09 15:43:58
Message-ID: 5074463E.3080908 () immunityinc ! com
[Download RAW message or body]

[Attachment #2 (multipart/signed)]

[Attachment #4 (multipart/alternative)]


I have this section in the Ottawa keynote called "Profiles in Courage",
and one of the people in it is Huawei Global Security Officer John
Suffolk. Justin Seitz goes into some of the issues around Huawei's
evisceration this week in the blog post here:
http://cybersecpolitics.blogspot.com/2012/10/embedded-hacking.html . But
at some point soon, I think we'll see a bit of an exodus of western
executive talent from Huawei. Because the report is damning. Basically
it says "No way are we letting Huawei or ZTE have any part of the market
in the States. They operate as a branch of the Chinese government."

I think Huawei's own prebuttal
<http://www.huawei.com/ilink/en/download/HW_187368> confuses the issue
with supply chain issues, which are, as they point out, a moot point
when everyone builds their equipment in China. To quote John Suffolk:

    /The world has probably lost more confidential records than there
    are people on the planet, and it is easy to get the //impression
    that there are more breaches of security each year than there are
    drops of rain in a storm.
    /

Ok, I admit, I don't think John Suffolk himself wrote that document. But
regardless, his name is on it, and right now, the US Government has come
out saying "Huawei is one big trojan horse" and he's either a working
part of it, or completely ignorant of what his company is doing. Neither
is what someone is going to want on their Linked-In profile
<http://www.linkedin.com/pub/john-suffolk/0/b72/b21?trk=pub-pbmap>. :>

-dave


-- 
INFILTRATE - the world's best offensive information security conference.
April 2013 in Miami Beach
www.infiltratecon.com


[Attachment #7 (text/html)]

<html>
  <head>

    <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    I have this section in the Ottawa keynote called "Profiles in
    Courage", and one of the people in it is Huawei Global Security
    Officer John Suffolk. Justin Seitz goes into some of the issues
    around Huawei's evisceration this week in the blog post here: <a
href="http://cybersecpolitics.blogspot.com/2012/10/embedded-hacking.html">http://cybersecpolitics.blogspot.com/2012/10/embedded-hacking.html</a>
                
    . But at some point soon, I think we'll see a bit of an exodus of
    western executive talent from Huawei. Because the report is damning.
    Basically it says "No way are we letting Huawei or ZTE have any part
    of the market in the States. They operate as a branch of the Chinese
    government."<br>
    <br>
    I think Huawei's <a
      href="http://www.huawei.com/ilink/en/download/HW_187368">own
      prebuttal</a> confuses the issue with supply chain issues, which
    are, as they point out, a moot point when everyone builds their
    equipment in China. To quote John Suffolk:<br>
    <meta http-equiv="Content-Type" content="text/html;
      charset=ISO-8859-1">
    <blockquote>
      <div class="page" title="Page 10">
        <div class="layoutArea">
          <div class="column">
            <p><i><span style="font-size: 10.000000pt; font-family:
                  'FrutigerNextLT'; font-weight: 300">The world has
                  probably lost more confidential records than there are
                  people on the planet, and it is easy to get the
                </span></i><i><span style="font-size: 10.000000pt;
                  font-family: 'FrutigerNextLT'; font-weight: 300">impression
                  that there are more breaches of security each year
                  than there are drops of rain in a storm.<br>
                </span></i></p>
          </div>
        </div>
      </div>
    </blockquote>
    <div class="page" title="Page 10">
      <div class="layoutArea">
        <div class="column"><span style="font-size: 10.000000pt;
            font-family: 'FrutigerNextLT'; font-weight: 300"></span>Ok,
          I admit, I don't think John Suffolk himself wrote that
          document. But regardless, his name is on it, and right now,
          the US Government has come out saying "Huawei is one big
          trojan horse" and he's either a working part of it, or
          completely ignorant of what his company is doing. Neither is
          what someone is going to want on their <a
            href="http://www.linkedin.com/pub/john-suffolk/0/b72/b21?trk=pub-pbmap">Linked-In
  profile</a>. :&gt;<br>
          <br>
          -dave<br>
          <br>
          <br>
        </div>
      </div>
    </div>
    <pre class="moz-signature" cols="72">-- 
INFILTRATE - the world's best offensive information security conference.
April 2013 in Miami Beach
<a class="moz-txt-link-abbreviated" \
href="http://www.infiltratecon.com">www.infiltratecon.com</a> </pre>
  </body>
</html>


["signature.asc" (application/pgp-signature)]

_______________________________________________
Dailydave mailing list
Dailydave@lists.immunityinc.com
https://lists.immunityinc.com/mailman/listinfo/dailydave


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic