Source · Select Committees · Defence Committee
Recommendation 9
9
Paragraph: 72
Advice to Government was clear, that the presence of Huawei in the UK’s networks was...
Conclusion
Advice to Government was clear, that the presence of Huawei in the UK’s networks was a manageable risk. The UK has one of the most active and effective cyber-security regimes in the world, and, from our public and private conversations with Government, we are confident that GCHQ and the NCSC are able to appropriately manage any increased risk posed by the presence of Huawei or other high-risk vendors in the UK’s 5G.
Paragraph Reference:
72
Government Response
Acknowledged
HM Government
Acknowledged
The Government appreciates the recognition of the excellent job that Government Communications HQ (GCHQ) and the NCSC do to manage risk in the UK telecoms network. We have always been clear-eyed about the risk posed by Huawei. Since Huawei first came to the UK in 2003, their presence has been carefully risk-managed and subject to detailed formal oversight through the HCSEC since 2010, and the HCSEC Oversight Board, which has reported annually since 2014. Through the HCSEC and wider Huawei mitigation strategy and our close cooperation with telecommunication providers, coupled with the technical expertise within NCSC and GCHQ, we know more about Huawei, and the risks it poses, than any other country in the world. Approaches to Huawei in other countries have been vastly different to the UK. Some governments, particularly in Europe, use transparency centres as a form of oversight. These centres allow host Governments limited access to Huawei source code and equipment. However, they do not provide the same level of scrutiny and access to Huawei equipment and code that HCSEC is afforded.