Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Integrated security is key to Huawei Mobile Services

1 September 2020 Information Security

Mobile device security has become essential – just like home security has. With cellular devices literally becoming an extension of ourselves and our privacy, it is only fair that this information is stored and shielded appropriately. Huawei Mobile Services (HMS) has therefore designed measures that will protect sensitive information stored on (and transmitted by) its laptops, smartphones, tablets, wearables and other portable devices.

To ensure sufficient mobile device security, the technology giant incorporates security into its chip, device and cloud capabilities. It also includes easy to use, smart and secure HMS apps; a full portfolio of HMS Core and HMS Capability; as well as HMS Connect that is accessible to developers with corresponding IDE tools for development and testing.

Throughout its lifecycle, HMS protects Huawei device users' privacy and data, as well as provides a safety guide for developers on how to build secure and trustworthy apps by integrating HMS Core. Here is a list of security measures that Huawei has to protect consumers.

Chip-based hardware and operating system security

Huawei’s chip-based hardware and operating system (OS) security can effectively defend against software attacks initiated by attackers; preventing attackers from accessing the system and obtaining user data without authorisation. It uses enhanced chip security as the foundation of its security capabilities. In this way, it protects users' sensitive personal information while providing services.

Secure service access via Huawei ID

Huawei ID ensures account security by providing identity authentication measures and technical measures based on Huawei devices' software and hardware advantages. The Huawei security operation team periodically analyses new cyber-attacks in the industry and reviews existing security policies to quickly respond to security threats that may affect Huawei IDs. Users can safely log in to all of Huawei Mobile Services’ offerings, such as Huawei MOBILE CLOUD, Huawei Wallet, Huawei VIDEO, Huawei MUSIC, etc.

Encryption and data protection

HMS safeguards user data, regardless of whether it is stored on the cloud or transmitted over the network, preventing malicious or unauthorised access to user information and applications. It positions user data protection as a key security design objective. It provides secure login through Huawei ID while leveraging EMUI data protection capabilities. HMS has security encryption capabilities provided by the SE and trusted execution environment (TEE). Moreover, it uses data protection technologies during service processing and data exchange; all while relying on E2E encryption, trust relationship authentication for the certificate chain, signature to prevent data tampering and mutual trust between devices in a trust circle.

Network security

In addition to data protection on devices and in services, user data security protection on networks is also critical. Protection methods include the use of secure and reliable encrypted channels to transmit data, trusted security management with access protection on the cloud, isolation through network partitions, border attack defence and proactive detection of unauthorised access, encrypted data storage and comprehensive access audits.

Service security

HMS offerings include Huawei MOBILE CLOUD, Huawei Assistant, Huawei AppGallery, Huawei Wallet, Huawei VIDEO, Huawei MUSIC, Huawei THEMES and more. These apps provide a high-quality experience in terms of digital life in all scenarios, such as payment, travel and entertainment. Huawei protects the privacy and security of all these services through various means, such as authentication, authorisation, encryption, signature, synchronisation and backup.

AppGallery and app security

Huawei selects, strictly tests and reviews mobile apps to be launched in Huawei AppGallery to identify and remove apps that may infringe upon users' privacy or steal users' information. Huawei AppGallery provides strong protection for the privacy and security of apps in the developer ecosystem throughout their lifecycle, including their release, download, installation, use and removal, without affecting the consumers' experience.

HMS Core (Developer Kits)

HMS Core provides open, on-cloud core services and capabilities, such as account, payment, push and map services. These services and capabilities will help apps acquire more users, improve user activity and achieve business success. HMS Core capabilities are exposed to global developers, helping them create high-quality apps and services.

Privacy control

Personal information stored on HMS will be properly protected. This includes photos, contacts, call records, emails, chat information and frequently visited websites. In addition, all processing of personal information is in compliance with local applicable laws and regulations and users' privacy is fully considered. For example, users are explicitly informed of data collection in advance and have full control over the collection, processing and sharing of their personal information. Huawei will never provide any third party with a user's personal information without the user's authorisation.

Security and privacy certification and conformance

HMS has been certified by multiple international security authorities and complies with global applicable security and privacy laws and regulations. Huawei is committed to actively participating in the formulation of industry security standards in addition to making its own contributions to the sound development of the industry.

As the demand for stronger security continues to grow, systems are becoming more complex and intertwined with each other. This, along with evolving threats and adversarial attack vectors, puts a greater strain on future cloud security. It is challenging for users to understand and keep up with the various security and privacy risks that they are exposed to when they use various smart apps and devices in their daily routines.

Huawei is focusing on dealing with the challenges faced by users, developers and legislature in collaboration with its academic and industry partners – while adhering to its key objectives of protecting and empowering users. This is done by fortifying a foundation against emerging threats and preparing for any disruptive technology.




Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

What are MFA fatigue attacks, and how can they be prevented?
Information Security
Multifactor authentication is a security measure that requires users to provide a second form of verification before they can log into a corporate network. It has long been considered essential for keeping fraudsters out. However, cybercriminals have been discovering clever ways to bypass it.

Read more...
SA's cybersecurity risks to watch
Information Security
The persistent myth is that cybercrime only targets the biggest companies and economies, but cybercriminals are not bound by geography, and rapidly digitising economies lure them in large numbers.

Read more...
Cyber insurance a key component in cyber defence strategies
Information Security
[Sponsored] Cyber insurance has become a key part of South African organisations’ risk reduction strategies, driven by the need for additional financial protection and contingency plans in the event of a cyber incident.

Read more...
Deception technology crucial to unmasking data theft
Information Security Security Services & Risk Management
The ‘silent theft’ of data is an increasingly prevalent cyber threat to businesses, driving the ongoing leakage of personal information in the public domain through undetected attacks that cannot even be policed by data privacy legislation.

Read more...
Data security and privacy in global mobility
Security Services & Risk Management Information Security
Data security and privacy in today’s interconnected world is of paramount importance. In the realm of global mobility, where individuals and organisations traverse borders for various reasons, safeguarding sensitive information becomes an even more critical imperative.

Read more...
Sophos celebrates partners and cybersecurity innovation at annual conference
News & Events Information Security
[Sponsored] Sun City hosted Sophos' annual partner event this year, which took place from 12 to 14 March. Sophos’ South African cybersecurity distributors and resellers gathered for an engaging two-day conference.

Read more...
The CIPC hack has potentially serious consequences
Editor's Choice Information Security
A cyber breach at the South African Companies and Intellectual Property Commission (CIPC) has put millions of companies at risk. The organisation holds a vast database of registration details, including sensitive data like ID numbers, addresses, and contact information.

Read more...
Navigating South Africa's cybersecurity regulations
Sophos Information Security Infrastructure
[Sponsored] Data privacy and compliance are not just buzzwords; they are essential components of a robust cybersecurity strategy that cannot be ignored. Understanding and adhering to local data protection laws and regulations becomes paramount.

Read more...
AI augmentation in security software and the resistance to IT
Security Services & Risk Management Information Security
The integration of AI technology into security software has been met with resistance. In this, the first in a series of two articles, Paul Meyer explores the challenges and obstacles that must be overcome to empower AI-enabled, human-centric decision-making.

Read more...
Milestone Systems joins CVE programme
Milestone Systems News & Events Information Security
Milestone Systems has partnered with the Common Vulnerability and Exposures (CVE) Programme as a CVE Numbering Authority (CNA), to assist the programme to find, describe, and catalogue known cybersecurity issues.

Read more...











SMART Security Business Directory



Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.