Huawei: Our inverters are not a cybersecurity threat

Facebook
Twitter
LinkedIn
Reddit
Email
Source: Huawei.

Huawei has defended the security of its solar inverters in the wake of calls from a group of US senators for them to be removed from use in the States.

The letter, released on Monday urged Congress to put in place action similar to that which blocks Huawei and fellow Chinese firm ZTE from providing telecommunications infrastructure.

This article requires Premium SubscriptionBasic (FREE) Subscription

Unlock unlimited access for 12 whole months of distinctive global analysis

Photovoltaics International is now included.

  • Regular insight and analysis of the industry’s biggest developments
  • In-depth interviews with the industry’s leading figures
  • Unlimited digital access to the PV Tech Power journal catalogue
  • Unlimited digital access to the Photovoltaics International journal catalogue
  • Access to more than 1,000 technical papers
  • Discounts on Solar Media’s portfolio of events, in-person and virtual

Or continue reading this article for free

“We write to express our concern over the national security threat products manufactured by Huawei Technologies Co., Ltd. (Huawei) pose to our nation’s critical energy infrastructure. We understand that Huawei, the world’s largest manufacturer of solar inverters, is attempting to access our domestic residential and commercial markets,” states the letter. “Congress recently acted to block Huawei from our telecommunications equipment market due to concerns with the company’s links to China’s intelligence services. We urge similar action to protect critical US electrical systems and infrastructure.”

In a statement sent to PV Tech, Huawei said its inverters complied with all cybersecurity requirements.

“As a global leading ICT and Network Energy solutions provider, Huawei is fully aware of the importance of cybersecurity,” it said.

“So far, our products and solutions have been safely and stably used in more than 40 countries, and have won the trust of tens of thousands customers around the world. We have never received any cybersecurity allegations by our customers.

“Huawei commits to providing customers with high-quality products and services. At present, the quality and reliability of Huawei Solar inverters are higher than the industry average standard. The Solar products and solutions Huawei is selling in the United States are in compliance with local US cybersecurity rules.

“Cybersecurity and privacy protection are customers’ basic demands and a core value Huawei creates for the customers. Huawei has clearly defined cybersecurity and privacy protection as the company's highest priority to protect customers' cybersecurity and ensure the secure and stable development of customers around the world.

“Huawei complies with all applicable laws and regulations where it operates, including applicable export control and sanction laws and regulations of the UN, US and EU.”

Willem Westerhof is an ethical hacker and public speaker with the Dutch digital security firm Qbit and has previously uncovered vulnerabilities in solar modules.

“There are many ways an attacker can target electricity grids. Some attack vectors, however, are more feasible than others,” he told PV Tech. “An attacker often thinks in scenarios: they want to achieve a certain goal such as causing a blackout or obtaining money etc. Any device within the electricity grid, that is capable of aiding in such a scenario, can be targeted by an attacker. This is in no way limited to solar inverters,” said Westerhof.

“By conducting a hardware ban, it is possible to stop widespread use of devices that are deemed ‘untrustworthy’ by the ones who set up the hardware ban. The ban ensures, if properly enforced, that an attack targeting an electrical grid via the ‘untrustworthy’ device is no longer a feasible attack vector. Whether this ban actually stops a determined and sophisticated attacker depends on the security level of all remaining systems that have not been banned.”

“A hardware ban does not necessarily stop a determined and sophisticated hacker. Any hardware from any vendor can be targeted and attacked by a malicious attacker. Whether this attack is successful or not, depends on the security level of the attacked device. It is, however, possible for hardware to have vulnerabilities present due to a lack of testing, or due to the deliberate creation of backdoors. A ban on specific hardware is more of a reflection on how much trust an entity is willing to put in another entity,” he added.

21 May 2024
Napa, USA
PV Tech has been running PV ModuleTech Conferences since 2017. PV ModuleTech USA, on 21-22 May 2024, will be our third PV ModulelTech conference dedicated to the U.S. utility scale solar sector. The event will gather the key stakeholders from solar developers, solar asset owners and investors, PV manufacturing, policy-making and and all interested downstream channels and third-party entities. The goal is simple: to map out the PV module supply channels to the U.S. out to 2025 and beyond.
8 October 2024
San Francisco Bay Area, USA
PV Tech has been running an annual PV CellTech Conference since 2016. PV CellTech USA, on 8-9 October 2024 is our second PV CellTech conference dedicated to the U.S. manufacturing sector. The event in 2023 was a sell out success and 2024 will once again gather the key stakeholders from PV manufacturing, equipment/materials, policy-making and strategy, capital equipment investment and all interested downstream channels and third-party entities. The goal is simple: to map out PV manufacturing in the U.S. out to 2030 and beyond.

Read Next

Subscribe to Newsletter

Upcoming Events

Solar Media Events
April 10, 2024
Dallas, Texas USA
Solar Media Events
April 17, 2024
Lisbon, Portugal
Solar Media Events
May 1, 2024
Dallas, Texas
Solar Media Events
May 21, 2024
Napa, USA