TY - BOOK AU - Lysne,Olav ED - SpringerLink (Online service) TI - The Huawei and Snowden Questions: Can Electronic Equipment from Untrusted Vendors be Verified? Can an Untrusted Vendor Build Trust into Electronic Equipment? T2 - Simula SpringerBriefs on Computing SN - 9783319749501 AV - QA76.9.A25 U1 - 005.8 23 PY - 2018/// CY - Cham PB - Springer International Publishing, Imprint: Springer KW - Computer security KW - Computer engineering KW - Management information systems KW - Computer science KW - Political science KW - Economic policy KW - Privacy KW - Computer Engineering KW - Management of Computing and Information Systems KW - Governance and Government KW - R & D/Technology Policy N1 - 1 Introduction -- 2 Trust -- 3 What is an ICT-System? -- 4 Development of ICT Systems -- 5 Theoretical Foundation -- 6 Reverse Engineering of Code -- 7 Static Detection of Malware -- 8 Dynamic Detection Methods -- 9 Formal Methods -- 10 Software Quality and Quality Management -- 11 Containment of Untrusted Modules -- 12 Summary and Way Forward; Open Access N2 - Preliminary This book is open access under a CC BY 4.0 license. This book answers two central questions: firstly, is it at all possible to verify electronic equipment procured from untrusted vendors? Secondly, can I build trust into my products in such a way that I support verification by untrusting customers? In separate chapters the book takes readers through the state of the art in fields of computer science that can shed light on these questions. In a concluding chapter it discusses realistic ways forward. In discussions on cyber security, there is a tacit assumption that the manufacturer of equipment will collaborate with the user of the equipment to stop third-party wrongdoers. The Snowden files and recent deliberations on the use of Chinese equipment in the critical infrastructures of western countries have changed this. The discourse in both cases revolves around what malevolent manufacturers can do to harm their own customers, and the importance of the matter is on par with questions of national security. This book is of great interest to ICT and security professionals who need a clear understanding of the two questions posed in the subtitle, and to decision-makers in industry, national bodies and nation states. UR - https://doi.org/10.1007/978-3-319-74950-1 ER -