Point of the thread is the variety of applications of Huawei technology and products.
Switches, routers, firewall, CPE, LTE/3G equipment. These (in my opinion) could be a quite big issue for who’s managing ad IT environment.
Some of these are coming from ISP/Telco Operatore. Some others are buyed from anyone.
I am asking myself if my customers should contact ISP/telco for clarifications and eventually ask when the device will be replaced. Of course, not now, many Huawei commercial partners are in a whirlwind with lawyers, risk assessment, cost assessment for insurances or technology change.
As written before, the end user device as laptop, mobile phone, mobile router are quite… not interesting.
If the mobile phone was buyed during the last year, in two years will be superseeded by a new one. The mobile router will be replaced for 5G device.
The laptop maybe won’t receive help from microsoft about drivers, but will receive OS updates as usual. The issues maybe could arrive for the next speculative execution vulnerability (Spectre, Meltdown, Zombieload, the next one), but in my opinion on a laptop this could not be such a critical issue, considering that a lot of older devices will not receive bios updates for microcode or mitigation.
Android updates: I don’t know who’s using a Nougat or Oreo-based phone, mine is Marshmallow-based, android patch release is april 2018. I do not use home banking apps, or biometric authentication for any of the device. Only Smart lock for a couple of bluetooth devices.
Maybe i will change it at the end of the year, i am not concerned of the security of this device, currently. Tomorrow maybe i will change idea.
I don’t think that final customer rights will be an issue for USA. Only if a class action wins against Trade commission/USA government there will be a little hole for allow the updates access for Huawei.
Unless there will be diplomatic work between PRC, USA and Huawei to arrange something different. But i’m not relying on that…