Risk
2/15/2013
11:13 AM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%
Repost This

Huawei Applauds U.S. Executive Order Calling Enhanced Collaboration And Standards To Address Cybersecurity

Initiatives are in line with Huawei's focus on standard-setting

WASHINGTON, Feb. 15, 2013 /PRNewswire-USNewswire/ -- Huawei, a leading global information and communications technology (ICT) solutions provider, welcomes President Obama's Executive Order to enhance the sharing of cyber threat information and the establishment of a cybersecurity framework incorporating industry standards to protect critical infrastructure. These initiatives are in line with Huawei's focus on standard-setting as well as facilitated information sharing and collaboration among governments and the private sector internationally.

Specifically, Huawei supports U.S. policy designed to "enhance the security and resilience of the critical infrastructure," and to encourage "efficiency, innovation, and economic prosperity while promoting safety, security, business confidentiality, privacy, and civil liberties." As is reflected in the Executive Order, it is essential that governments and private companies work together to facilitate the sharing of timely and actionable cyber threat information, and collaborate to identify standards and best practices that can be assessed, measured, and improved.

"The effort in the U.S. will provide the public and private sector with a call to action for both enhanced information sharing and the development of standards to assist the critical infrastructure companies in protecting themselves. These efforts move beyond discourse and should result in concrete steps to tackle security issues," commented Huawei Global Security Officer John Suffolk. "The time has come to stop talking about the threat, stop talking about the challenges and begin to act, which is what this Executive Order represents."

About Huawei

Huawei is a leading global information and communications technology (ICT) solutions provider. Through our dedication to customer-centric innovation and strong partnerships, we have established end-to-end advantages in telecom networks, devices and cloud computing. We are committed to creating maximum value for telecom operators, enterprises and consumers by providing competitive solutions and services. Our products and solutions have been deployed in over

140 countries, serving more than one third of the world's population.

For more information, visit Huawei online: www.huawei.com

Follow us on Twitter: www.twitter.com/huaweipress and on

YouTube: http://www.youtube.com/user/HuaweiPress

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-1421
Published: 2014-04-22
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar before 1.2.5, 1.2.6, and other versions before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via the Category Name field to category.php.

CVE-2013-2105
Published: 2014-04-22
The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html.

CVE-2013-2187
Published: 2014-04-22
Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2 and 1.3 before 1.3.8 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, related to the home page.

CVE-2013-4116
Published: 2014-04-22
lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives.

CVE-2013-4472
Published: 2014-04-22
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.

Best of the Web