Huawei 5G: First to Pass GSMA NESAS Security Assessment on Product Development and Lifecycle Processes

[Shenzhen, China, August 19, 2020] Huawei's 5G equipment has passed the GSMA security assessment, making Huawei's 5G network equipment the first in industry to complete the assessment on both wireless and core networks. GSMA has officially released the security assessment results of the Network Equipment Security Assurance Scheme (NESAS) on mobile network equipment product development and lifecycle processes (link). Huawei's 5G RAN gNodeB, 5G Core, and LTE eNodeB equipment passed the GSMA NESAS assessment. GSMA NESAS boosts the industry's confidence in telecom network equipment, making it a practical choice for the industry and an important consideration for all regional markets, to jointly promote the development of more aligned mobile communications market.

GSMA NESAS, which is widely accepted in the industry, ensures that the relevant equipment meets the 5G security requirements of stakeholders as well as overall network security and reliability. The integrated assessment process also avoids fragmented assessments and their resulting costs, while improving the transparency of security protection levels in the industry through visual and measurable results. NESAS is a cyber security standard and assessment mechanism jointly defined by GSMA and 3GPP, together with major global operators, vendors, and industry partners. It provides a security assurance framework for the mobile communications industry, and aims to improve overall cyber security. NESAS covers 20 assessment categories, defines security requirements and assessment framework for 5G product development and product lifecycle processes, and uses security test cases defined by 3GPP to assess the security of network equipment.

"GSMA NESAS is the latest approach in assessing the network security of mobile communications. In 5G era, NESAS provides a standardized and effective cyber security assessment, which allows the communications industry to ensure fairness. The standard is also a valuable reference for stakeholders, such as operators, equipment vendors, government regulators, and application service providers. Huawei has always focused on technology-driven cyber security. We welcome NESAS with full support and collaboration. We also invite the entire industry to jointly promote the development of more aligned mobile communications market." – said Devin Duan, Head of 5G E2E Cybersecurity Marketing, Huawei.

For Huawei, cyber security assurance is a shared goal between Huawei, customers, supervisory authorities, and other stakeholders. Trust in cyber security has become a major global concern as the world becomes more digital. Huawei believes that trust must be based on verifiable facts, which should in turn be based on shared standards. We believe that this is an effective way to build trust in the digital era. Huawei supports GSMA and 3GPP in developing a global standardized security certification, an idea that has largely been accepted as an industry consensus. The NESAS network equipment security assessment promotes this concept, and as such, Huawei urges the industry to widely adopt the GSMA NESAS.

Prior to GSMA NESAS, Huawei also passed the 5G cyber security test by China's IMT-2020 (5G) Promotion Group. These test specifications are based on the 3GPP international standards for 5G security assurance.