l
To ensure the security and stability of the video conferencing system, the Box 700
utilizes multiple encryption measures, including H.235 (for encryption of media and
signaling streams), SRTP, TLS, and HTTPS.
l
For network management, the Box 700 supports the SNMP v3 protocol, which features
higher adaptability and security. User names and passwords are needed to connect the
network management system to the Box 700.
l
Robustness testing tools are used to scan protocols to ensure that there are no high-risk
vulnerabilities.
l
By default, the LDAP over SSL (LDAPS) protocol is used to encrypt the address book,
ensuring data integrity and preventing data from being stolen.
6.8 Protection of Sensitive Data
Sensitive data is protected in the following ways:
l
The log, diagnostics, debug, and alarm information do not contain sensitive data such as
passwords and ciphering contexts. If sensitive data is included, it is displayed as "***".
l
Sensitive data is transmitted only through secure channels or after being encrypted.
l
In the collaborative application scenario, the uPortal uses the root certificate for
authentication through HTTPS to protect sensitive information such as accounts and
passwords.
l
The Box 700 checks the complexity of passwords. When a password is being entered,
each stroke is displayed as "." or "*", and the entered password cannot be copied.
l
Only standard encryption algorithms and key negotiation mechanisms are used.
Proprietary algorithms are not allowed.
6.9 Protection of AI Voice Commands
The Box 700 collects voice commands that users give to the AI voice assistant and transmits
the commands to the AI server through the TLS1.2 secure channel for parsing. After being
transmitted to the AI server, the voice commands are immediately deleted from the Box 700,
and cannot be obtained through any method.
6.10 Facial Recognition Privacy Protection
The Box 700 utilizes the facial recognition technology to implement its intelligent sign-in and
electronic name tag functions. This technology saves user face images to local cache and
submits them to the facial recognition server for registration and identification. The Box 700
deletes user face images periodically. After users leave a meeting or the Box 700 is restarted,
user face images are also deleted. In addition, the images are used only for facial recognition
services.
6.11 System Management and Maintenance Security
l
Software packages (including patches) are released only after they are scanned by at
least five types of mainstream antivirus software and no issues are detected. In special
cases, explanation is provided for alarms.
HUAWEI Box 700
Product Overview
6 Security and Reliability
Issue 05 (2019-06-20)
Copyright © Huawei Technologies Co., Ltd.
34