EU to allow "high risk" 5G suppliers, including Huawei

However, like Britain, such suppliers will only be allowed a limited role in 5G infrastructure

EU commission flag

The European Union has said member states should be able to use "high risk" suppliers in their 5G networks, so long as key assets are secured. 

Member states will have ultimate control over what vendors they can use in their 5G infrastructure, but there's is no blanket ban of suppliers that may be deemed a risk to cyber security.  

The move is seen as a way to allow countries to make their own decision as to whether they use Huawei 5G infrastructure technology, despite the US lobbying to ban the Chinese firm's hardware from Western 5G networks. 

The "joint toolbox of mitigating measures" has been endorsed by the European Commission, with countries expected to start implementing the security controls by the end of April. 

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Alongside wider security measures, the document outlines how countries can manage the use of technologies from suppliers deemed "high risk". 

The non-binding plans say operators should assess the risk profile of suppliers, apply restrictions for those who raise concerns, and exclude key assets from those suppliers if necessary — in short, it's down to each country to decide whether to allow "high risk" suppliers, so long as they do it with eyes open and take security precautions. 

While Huawei isn't named in the document, the EC was widely seen as following the UK's lead when it comes to Huawei, after Britain refused to bow down to US demands to entirely exclude the Chinese networking giant from its 5G network, instead choosing to limit and control its use. 

“We are not picking on anybody, we are not ostracizing firms,” said Europe’s industry chief Thierry Breton at a news conference, according to Reuters

Indeed, the EU advised governments to choose products from a variety of vendors, rather than rely only on a single company. Those suppliers should be judged on technical merit, but possible threats of interference should be considered.

"Assess the risk profile of suppliers," the document says. "As a consequence, apply relevant restrictions for suppliers considered to be high risk — including necessary exclusions to effectively mitigate risks — for key assets defined as critical and sensitive in the EU coordinated risk assessment (e.g. core network functions, network management and orchestration functions, and access network functions)."

Advertisement - Article continues below

While that means Huawei products can be used by European countries, their use could be limited to non-core functions.

“This non-biased and fact-based approach towards 5G security allows Europe to have a more secure and faster 5G network,” Huawei said in a statement sent to Reuters.

Featured Resources

Digital Risk Report 2020

A global view into the impact of digital transformation on risk and security management

Download now

6 ways your business could suffer if you don’t backup Office 365

Office 365 makes it easy to lose valuable data regularly, unpredictably, unintentionally, and for good

Download now

Get the best out of your workforce

7 steps to unleashing their true potential with robotic process automation

Download now

8 digital best practices for IT professionals

Don't leave anything to chance when going digital

Download now
Advertisement

Most Popular

Visit/mobile/28299/how-to-use-chromecast-without-wi-fi
Mobile

How to use Chromecast without Wi-Fi

5 Feb 2020
Visit/operating-systems/27717/how-to-fix-a-stuck-windows-10-update
operating systems

How to fix a stuck Windows 10 update

12 Feb 2020
Visit/security/34616/the-top-ten-password-cracking-techniques-used-by-hackers
Security

The top ten password-cracking techniques used by hackers

10 Feb 2020
Visit/software/linux/354831/microsoft-to-add-defender-antivirus-software-to-linux-ios-and-android
Linux

Microsoft to add Defender antivirus software to Linux, iOS and Android

21 Feb 2020