Network devices from several Chinese manufacturers are insecure and allow personal information to be leaked, testing commissioned by the Executive Yuan has shown.
A variety of devices and software, including apps, from Chinese, US and South Korean manufacturers that are used by government agencies at the central and local level were subjected to black-box testing — in which the functionality of an application is examined without knowing about its internal structure, an information-security official said yesterday on condition of anonymity.
The Telecom Technology Center conducted the tests, which simulated cyberattacks, to determine their resilience to the attacks, the official said.
The center said it would send the results of the tests to the manufacturers and retest the affected devices in two months, pending software updates.
The Chinese manufacturers included Xiaomi Corp (小米), Oppo Mobile Telecommunications Corp (歐珀), Hangzhou Hikvision Digital Technology Co (杭州海康威視數字技術) and Zhejiang Dahua Technology Co (浙江大華技術).
Information stored on some of the tested Chinese-made products was found to be insecure, the official said.
Of the software that failed to meet national requirements for information security, one app was from Oppo and seven were from Xiaomi, while software and devices from Samsung Electronics Co and Apple Inc passed all their tests, the official said.
Tests on devices from Hikvision and Dahua were aimed at testing the security of their system software, identity-recognition software, authorization mechanisms and their protection of personal information, the official said.
The monitoring software in Hikvision network camera model DFI 6257E and Dahua infrared camera model DH-IPC-HFW1230SN exhibited abnormal behavior, did not have alert functions and received a relatively low score of seven in version 3.1 of the Common Vulnerability Scoring System, which indicates security loopholes, the official said.
Both devices also used an insecure encryption system and an insufficiently complex verification system, and neither had shells designed to prevent dismantling, the official said.
The center also conducted tests on drones built by Shenzhen DJI Sciences and Technologies (深圳大疆創新科技有限公司), which supplies the drones used by Taiwan Water Corp (台灣自來水).
Tests on the company’s Mavic Pro, Mavic 2 Pro and Phantom 4 Pro V2.0 models showed signs of signal interference, which appeared in the devices’ logs, the official said.
They all had weak information-security mechanisms, among other problems, the official added.
‘NO SECURITY RISK’: The Railway Bureau reassured the public that the technicians’ activities were limited to technical guidance and did not involve sensitive systems The Railway Bureau yesterday said it had invited eight Chinese technicians to assist with an airport MRT construction project. The bureau issued the confirmation after an Internet user said Chinese nationals had entered the construction zone of Taiwan Taoyuan International Airport’s Terminal 3 project. They asked why “individuals from an enemy state” were allowed access to such a major national infrastructure project, which raised serious concerns over Taiwan’s industrial safety, sensitive systems and information security. The bureau’s Northern Region Engineering Branch Office said subcontractor Taiwan Handle Industrial Co (台灣手把工業) of the Taoyuan airport MRT’s “Contract No. CU05 Project A14 Station Civil, MEP &
A US uncrewed surface vessel (USV) encountered multiple Chinese warships during an autonomous transit of the Taiwan Strait, US defense company Seasats said in a statement on Wednesday. Seasats announced that a Lightfish USV had completed the first autonomous transit of the Taiwan Strait. Over five days, the USV traversed the entire length of the Strait while constantly monitoring surface vessel traffic, the company said. The Lightfish encountered multiple Chinese warships, one of which was a Chinese People’s Liberation Army Navy (PLAN) Type 056 corvette, it said. The Chinese vessels were operating “well within Taiwan’s exclusive economic zone without transmitting their identity via the
‘BOOMING’: ’ The number of partners we have here is incredible. You can see from their stock prices. They’re doing so well, they’re so happy,’ Jensen Huang said Nvidia Corp’s spending in Taiwan has ballooned to about US$150 billion a year, 10 times the US$10 billion to US$15 billion the company spent five years ago, Nvidia chief executive officer Jensen Huang (黃仁勳) said yesterday, suggesting Taiwan’s strategic importance in the global artificial intelligence (AI) supply chain. “Taiwan is the epicenter of the AI revolution. This is where the chips come, packaging comes. This is where the systems are made. This is where AI supercomputers were created,” Huang said at a meeting for the company’s employees in Beitou-Shilin Technology Park (北投士林科技園區) in Taipei, the planned site of Nvidia’s Taipei headquarters. “Taiwan
GREATER REACH? Auto parts and wood products would face tariffs of up to 15%, matching those targeting the EU, Japan and South Korea, Vice Premier said The US has announced that preferential tariff treatment for Taiwan’s non-semiconductor Section 232 goods would take effect retroactively from May 1, the Executive Yuan said yesterday. The US government yesterday posted a notice on the Federal Register’s public inspection Web site previewing tariff concessions for Taiwan under a memorandum of understanding (MOU) on Taiwan-US investment after two months of negotiations. The MOU signed on Jan. 15 stipulated three major preferential tariff arrangements: a 15 percent “reciprocal” tariff rate for Taiwan without stacking most-favored nation (MFN) rates; preferential Section 232 treatment for semiconductors and related products; and preferential Section 232 treatment for non-semiconductor
RSS