LONDON/SAN FRANCISCO (Reuters) - Huawei Technologies [HWT.UL] is facing increased scrutiny in Britain because it is using an aging software component sold by a firm based in the United States, one of the countries where lawmakers allege its equipment could facilitate Chinese spying, sources told Reuters.
FILE PHOTO: People walk past a Huawei sign at CES (Consumer Electronics Show) Asia 2018 in Shanghai, China June 14, 2018. REUTERS/Aly Song/File Photo
The fact that the British misgivings stem in part from Huawei’s relationship with a U.S. company shows how trade wars and heightened national security concerns are making it harder for technology firms and governments to safeguard products and communication networks.
A report last month by a British government oversight board charged with analyzing Huawei equipment said it had found technical and supply chain “shortcomings” which exposed the country’s telecoms networks to new security risks.
One of those is due to Huawei’s use of the VxWorks operating system, which is made by California-based Wind River Systems, said three people with knowledge of the matter, all of whom spoke on condition of anonymity when discussing details which were not made public in the report.
The sources said the version of VxWorks being used by Huawei will stop receiving security patches and updates from Wind River in 2020, even though some of the products it is embedded in will still be in service, potentially leaving British telecoms networks vulnerable to attack.
“Third party software, including security critical components, on various component boards will come out of existing long-term support in 2020, even though the Huawei end of life date for the products containing this component is often longer,” the July report, which did not name VxWorks, said.
U.S. and Australian lawmakers have said Huawei’s products can be
