Recently, the Citizen Lab, an independent organization for privacy research, released a privacy security report on various input methods.
The lab analyzed the input methods of nine manufacturers, including Baidu, Honor, Huawei, iFLYTEK, OPPO, Samsung, Tencent, vivo and Xiaomi, and found that all eight manufacturers except Huawei had serious vulnerabilities in their mobile phone cloud input methods.
It affects nearly 1 billion users, and the situation is serious and even threatens national security
Vulnerabilities in mobile phone input methods can bring a series of security problems. For example, hackers can exploit these vulnerabilities to obtain the complete input content of users, and the user's financial information, account password, and privacy information are all exposed to the risk, and even involve serious security issues such as the leakage of trade secrets, and in more serious cases, the leakage of secrets may threaten national security.
These are not alarmist,First of all, the vulnerability has a great impact,Sogou、Baidu and iFLYTEK alone the three input method market share,It accounts for more than 95% of China's third-party input method market,The number of affected users is about 1 billion。 Second, finding and exploiting these vulnerabilities does not require advanced technology, and a coalition intelligence agency has previously used similar Chinese input method security vulnerabilities to carry out mass surveillance.
However, after the report was released, the lab has submitted these vulnerabilities to the nine affected developers, and most of them have taken the issue seriously and responded to it, while patching the vulnerabilities, but there are still a few input methods that have not been patched.
Safe and pure engraved into the soul of the small art input method
One of the most important reasons why Xiaoyi Input Method is not affected by vulnerabilities is one of Huawei's important development strategies: building and fully implementing an end-to-end global network security and privacy assurance system.
Specifically, Huawei requires all its products to strictly comply with security regulations, and if the product involves the use of an insecure encryption protocol version or an insecure cipher suite, it is not allowed to release the product if it involves the use of an insecure encryption protocol version or an insecure cipher suite.
Xiaoyi input method as the official preset input method of Huawei mobile phone,It is completely developed in strict accordance with Huawei's security specifications,When it comes to the call of cloud functions,Data is transmitted using a secure encrypted channel,Ensure 100% security in the process of data transmission。
It can be said that from the beginning of its birth, Xiaoyi input method has engraved safety and purity into the soul, which is also an important reason why Xiaoyi input method is not affected.
In September 2021, Xiaoyi input method was launched in the "Application Crowd Test" of Huawei Member Center. At the beginning of the crowd test, due to problems such as imperfect thesaurus, insufficient associative ability, and incorrect display of half-width and full-width symbols, it was more or less questioned. However, after nearly 3 years, the average daily user volume of Xiaoyi input method has begun to open up a faulty gap after the early climbing.
Today's Xiaoyi input method,It has supported voice、Translation、Shooting、Text and other input methods,Also based on HarmonyOS and Pangu large model,With fast and accurate input、High-quality copywriting、Safe, concise and pure and other characteristics,Xiaoyi help writing function is to support a variety of high-frequency scenarios in copywriting output,Including entertainment and social greetings、Circle of friends、Weibo、Xiaohongshu、Douyin copywriting, etc.,As well as tool assistant speeches,Invitations,Polishing and rewriting, etc。
Nowadays, Xiaoyi input method has become the preferred input method for Huawei mobile phone users.
HarmonyOS has always been committed to providing users with a smooth, secure, and ever-new user experience
In the digital era, mobile phones have become an indispensable part of our lives, but at the same time, mobile phones have also become one of the main ways for personal privacy leakage. So Huawei, which is unique in the input method, what are the highlights of these problems on HarmonyOS?
In terms of security, HarmonyOS has established a new application service order from the source, so that the development, release, installation, and operation stages of applications can be controlled in an orderly manner. In the application release stage, by combining industry anti-fraud cooperation and AI prevention and control, it can help users prevent the risk of fraud and gambling.
During the application running phase, the Application Control Center of HarmonyOS can intelligently identify risky application behaviors on the device side. If a virus app is detected, the system will proactively advise the user to uninstall it immediately. For risky apps, users are advised to put them in the app governance center.
Applications placed in the application control center run in controlled areas, and applications cannot obtain the user's real data and sensitive permissions, such as information, contacts, call logs, logs, locations, media and files, and background pop-ups, so that the application can run normally while being controlled, and the user's data privacy and device security are strictly protected.
Once an app is detected to have malicious background/lock screen pop-ups, maliciously hide app icons, induce installation pop-ups, pull up other apps without the user's knowledge, or maliciously steal user privacy, the application control center will actively block and advise users to uninstall it immediately. The application control center also supports real-time risk reminders and automatic interception through desktop cards, so that users can have a clearer understanding of the security status of their mobile phones and use their mobile phones with more confidence.
In terms of privacy protection, Huawei is committed to using innovative technologies to protect user privacy.
The privacy center of HarmonyOS collects and records the behaviors of all apps on the phone that access sensitive information such as cameras, microphones, locations, files and multimedia, and contacts in real time.
If it detects that an app is using permissions inappropriately, such as unrelated apps frequently accessing sensitive information, or frequently accessing unwanted permissions when the screen is locked, Privacy Center recommends that users turn off their permissions. Users can also add cards from Privacy & Security Center to the desktop to view permission usage in real time.
HarmonyOS also has a feature called Application Tracking Management. Many people may have had a similar experience: just search for a certain product in a certain app, and then open other apps will push ads about that product, which is the developer maliciously tracking user behavior and abusing data to push ads, which not only affects the user's daily use experience, but even threatens personal privacy and security.
In this regard, HarmonyOS has comprehensively upgraded the application tracking management, changing the developer's ability to obtain the OAID of the device from uncontrolled to authorized control, and returning the control of data to the user, who can decide whether to be "connected" or not.
In the recently upgraded HarmonyOS 4.2 version, the pure and secure capabilities have been upgraded again, bringing a sense of security in all ways and anti-fraud in all directions, and even launched the "Shake Ad" blocking function. HarmonyOS 4.2 gives users the right to make their own choices directly at the system level, providing users with the "App Gets Device Directions" permission control switch, which allows users to avoid the problem of accidentally shaking the phone to enter the ad interface when the app shakes the ad interface, so that the app shake jump behavior can be known and controlled, ensuring the user's safety and user experience. I have to say that HarmonyOS has never lost when it comes to feeling safe.
Huawei's unique leadership leads the future development of the industry
At present, Huawei is a leader in the field of user privacy and security protection.
The only safe and pure Xiaoyi input method,Users can enjoy convenient input while not worrying about privacy and security;Coupled with the Hongmeng operating system supported by many technical means such as full-process application control and application tracking management,Let Huawei mobile phone users feel a sense of security directly。
In the future, Huawei will continue to lead the development direction of the industry and help the entire industry prosper, so that not only Huawei users, but also all brand users no longer have to worry about privacy and security.