[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Predisclosure-applications] Huawei application for pre disclosure list

Hello,

 

Here is the application from Huawei Technologies Co., Ltd.

 

We have read the Xen Security policy and agree to abide by the terms for inclusion in the list, including the requirements to regarding confidentiality during an embargo period.

 

The FusionSphere product is Huawei's cloud operating system product. Here is the link to FusionSphere product intruduction: http://e.huawei.com/en/products/cloud-computing-dc/cloud-computing/fusionsphere/fusionsphere, and the link to FusionSphere product download:

http://support.huawei.com/enterprise/softdownload?lang=en&idAbsPath=fixnode01|7919749|7919788|9856606&pid=9856606

 

The FusionSphere integrates the FusionCompute virtualization platform and FusionManager cloud management software. UVP (Unified Virtualization Platform) is a component of FusionCompute and UVP is an XEN based hypervisor. In the link http://e.huawei.com/en/products/cloud-computing-dc/cloud-computing/fusionsphere/fusionsphere the document of FusionSphere 3.1 Technical white paper introduce the technical detail of the FusionSphere, which shows the hypervisor called UVP is based on XEN (Chapter 5.1 Computing Virtualization). And there is another document Huawei FusionSphere 3.1 Technical White Paper on Virtualization (http://enterprise.huawei.com/ilink/cnenterprise/download/HW_333839) tells more details about the hypervisor, in which there is more evidence of we are using XEN.

 

FusionSphere is deployed in privite cloud for VDI(virtual desktop infrastructure) and server virtualization, and also deployed in Huawei Clouds which is a public hosting service ( http://www.hwclouds.com/ ).

 

Currently we track the security advisory on Security Announcements Page and release security warning and solution to our customers, for example

http://support.huawei.com/enterprise/NewsReadAction.action?newType=03&contentId=NEWS1000005529&idAbsPath=03_ROOT|03Second_0305|7919749|7919788|9856606.

 

If the user of FusionSphere discover security problems they can report vulnerabilities to Huawei ( http://www.huawei.com/en/security/psirt/report-vulnerabilities/index.htm ), user can send email to psirt@xxxxxxxxxx, or contact Huawei TAC (Huawei Technical Assistance Center). The security vulnerabilities identified by TAC will be escalated through internal process to PSIRT for resolution. 

 

FusionSphere is widely deployed, there are more than 500,000 VMs runs on UVP hypervisor. And Huawei is also a public hosting provider. The security and reliability of hypervisor is important, subscribe the Pre-disclosure list will help us to improve product and service quality.

 

The email we wish to added to the predisclosure list is PSIRT@xxxxxxxxxx.

 

Thank you!

 

_______________________________________________
Predisclosure-applications mailing list
Predisclosure-applications@xxxxxxxxxxxxxxxxxxxx
http://lists.xenproject.org/cgi-bin/mailman/listinfo/predisclosure-applications

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.