Thanks to advances in mobile Internet, people increasingly rely on mobile smart devices for online access. These devices store a wealth of user data, and the number of apps originating from diverse sources is continuing to grow. This challenge puts user privacy and security at risk, drawing increasing scrutiny to the security of mobile smart devices.
Huawei puts a high premium on the security of mobile smart devices, delivering end-to-end security solutions while ensuring excellent user experiences.
Chip security solutions
Huawei's HiSilicon chips provide hardware-based, chip-level security protection. They fend off side-channel attacks and other physical attacks through a range of security capabilities: secure boot, secure storage, a trusted execution environment, the True Random Number Generator, hardware-based algorithmic engines, and hardware-level attack prevention. In addition, these chips run in a trusted execution environment to protect device systems, data, and network communications.
Huawei's innovative financial-grade inSE security solution embeds a security chip into a smartphone processor. inSE utilizes a System-on-a-Chip (SOC) design and software algorithms to protect both software and hardware. This ensures chip-grade protection for a smartphone's system security and user privacy, because it can build defenses into software and withstand hardware attacks.
Security of the EMUI operating system
Huawei's Emotion User Interface (EMUI) provides end-to-end security protection for hardware, systems, and apps. This includes security and privacy protection for hardware chips, system kernels, data, apps, networks, payments, cloud services, and device management.
Trusted Execution Environment (TEE)
EMUI supports the secure TEE operating systems of various chip platforms. iTrustee is a TEE OS designed by Huawei, based on Huawei's HiSilicon platform, using ARM TrustZone. iTrustee creates a well-protected and isolated environment for users' confidential data and apps, including fingerprint screen unlocking, fingerprint payments, USB keys, Skytone, and Huawei Wallet.
Security of systems and apps
EMUI ensures security with advanced functions at four levels:
- System security: integrity protection (verified boot, Huawei Kernel Integrity Protection, and EMUI Integrity Measurement Architecture), kernel security (Security-Enhanced Linux access control, and kernel address space layout randomization), and system software upgrade
- Data security: lock screen passcode protection, file system encryption, Huawei Universal Keystore, secure erasure, and password vault
- App security: app signature, app sandbox, runtime memory protection, secure input, app threat detection, AI security defense, malicious website detection, and traffic management
- Communications security: defense against rogue base stations, blocks and filters, and device interconnection security
Huawei's mobile cloud services
Huawei's mobile cloud services provide robust security protection for Huawei accounts, HiCloud, and AppGallery.
Security of accounts
Over 500 million people can use their accounts securely thanks to our cutting-edge account protection technologies. These technologies include two-factor authentication, slide verification codes, heuristic security authentication, and account risk control.
On Huawei's HiCloud, users can store and synchronize numerous types of data, such as photos, contacts, text messages, call logs, memos, calendars, and web browser bookmarks. To protect this data, HiCloud employs nine advanced technologies: password security, authentication management, permission management, session management, password algorithms, password management, privacy protection, integrity management, and digital certification management.
Huawei's AppGallery manages the security of apps with a four-layer system: detecting malicious behavior, scanning security vulnerabilities, checking privacy breaches, and performing manual reassessments. With this system, users can download secure apps from Huawei's AppGallery.
Android Green Alliance and green apps
The first smartphone running the Android operating system (OS) entered China almost ten years ago. At present, 80% of smartphones use Android, but the OS is a double-edged sword. On one hand, it provides a wide array of functions that make lives, work, and learning easier and more effective. On the other hand, it can affect user security and experience with issues such as slow system response times, crashes, and privacy breaches.
To address these issues, Huawei led the formation of the Android Green Alliance in November 2016, which was the first ever organization in China devoted to building an ecosystem of green applications. By 2018, the alliance had brought together over 1,000 members covering more than 3,000 apps. The alliance holds routine technical discussions and eliminates chaos in a market full of apps with different quality standards. The alliance has established standards bodies with industry experts, and explored ways to improve the quality of apps.
In 2017 and 2018, the alliance released the first and second versions of the Experience Standards for Green Apps. According to these standards, green apps must meet requirements for compatibility, stability, power consumption, security, and performance. In Huawei's AppGallery, apps like these have a "Green" mark, so that users can download and use these apps with confidence.
Privacy and security certifications by authoritative institutions
Major products of Huawei's Consumer BG have passed multiple international security certifications that examine devices as well as their chips and cloud services. These certificates attest to our ability to consistently meet high standards for user privacy and security.
The inSE solution for the Kirin 980 chip received an EMVCo certificate in the finance sector. This certificate allows for international mobile payments and mobile financial services. The inSE has also received the China Financial National Rising Authentication (CFNR) Technology Certification of Mobile Financial Service – Chip Security, passed China UnionPay's Card Chip Security Specifications, and obtained the level-2 Certificate for Commercial Cipher Product Models.
iTrustee 2.0, a trusted execution environment for devices, has been awarded the CC EAL 2+ certificate. CC, or Common Criteria, is an international standard for IT security evaluation and certification.
Huawei Mobile Cloud has obtained international security certificates based on ISO27001 and CSA-STAR.
Vmall, an online store for Huawei products, received the internationally recognized TRUSTe privacy certificate.
Huawei Pay, a mobile payment app, has been granted a PCI DSS certificate, the world's highest security standard.