Author: Gong Jinhui
This April, the mobile phone industry ushered in the intensive release of new machines, of which vivo can be described as unlimited scenery. Not only is it to launch its first folding screen flagship mobile phone X Fold, open the folding screen 2.0 era, but also brush the sense of existence on the tall occasion of the Boao Forum for Asia, and the X Fold/X Note just released has become the official designated machine of the Boao Forum for Asia by virtue of its strength.
At the recent Boao Forum for Asia, Lu Jinghui, Chief Security Officer of Vivo, shared Vivo's thinking and practice in the field of data security and personal information protection in the sub-forum of "Digital Economy: Born to the Sun", and released the "White Paper on Data Protection Compliance Trends" jointly compiled by the Academy of Information and Communications Technology and Vivo, so as to discuss the development methods of data protection compliance with experts in the industry and promote the common progress of data protection compliance in the industry.
In addition to the continuous innovation of hardware products, vivo has both landing technology and cutting-edge thinking in the battle of privacy and security, and continues to walk in the forefront of the industry. Perhaps you will wonder, vivo is not a professional security vendor, why is it so concerned about privacy and security, and even determined to win? What are its unique advantages?
The anti-fraud of the whole people needs social co-governance
When it comes to privacy and security, we have to mention anti-fraud. In recent years, telecommunications network fraud has become more and more rampant, and fraudulent methods have accelerated iterative changes, especially new types of cybercrime have become mainstream crimes, making people invincible and seriously threatening the safety of people's property. Tell a fact that may subvert the three views: many people think that the elderly are the main victims of telecommunications network fraud, but in fact, the young people who are most familiar with the Internet are more likely to be deceived.
According to data released by the National Anti-Fraud Center, among the victims of telecommunications network fraud in 2021, 65.5% are 18 to 35 years old, while only 1.4% are 60 years old and older. In March last year, a doctoral student of Zhongnan University of Economics and Law was defrauded of more than 100,000 yuan, which aroused concern and quickly appeared on the hot search. Young people should not think that they can see through the scam of the liar at a glance, and they do not know that they have fallen into the trap carefully set by the scammer step by step.
It can be seen that the anti-fraud situation is still very severe, and the anti-fraud work requires the judiciary, the industry, and enterprises to work together to govern, use the power of law and science and technology, and protect the privacy and safety of the public while effectively protecting the "money bags" of the masses, and establish a solid "anti-fraud protection network" for the public. It is gratifying that the regulatory authorities, Internet companies, mobile phone manufacturers and other forces have already taken action and achieved certain results.
In terms of regulatory authorities, the Ministry of Public Security has increased its efforts to crack down on telecommunications network fraud, and since June last year, the number of cases filed has dropped year-on-year for 9 consecutive months, and launched the National Anti-Fraud Center App, which plays an important role in preventing fraud; the Ministry of Industry and Information Technology has increased the rectification of problematic Apps, and organized technical testing of 2.08 million Apps in 2021, notifying 1549 violations and 514 removals.
The central bank has guided banks and financial institutions to establish a big data risk control model and carry out real-time fund interception of risk accounts involved in telecommunications network fraud, with a total of 1.02 million capital accounts intercepted for 14.8 billion yuan. By the way, on November 1 last year, the mainland's Personal Information Protection Law was officially promulgated, marking that the protection of personal privacy has entered a stage where there is a law to follow.
In terms of Internet companies, security manufacturers and financial technology companies are two forces in anti-fraud, the former typical representative is 360, Tencent, in 2021 360 mobile phone guard has blocked about 8.24 billion malicious program attacks, intercepted about 93.34 billion phishing website attacks; the Criminal Investigation Bureau of the Ministry of Public Security and Tencent jointly launched the "1107 National Anti-Fraud Day", and Tencent Mobile Butler has formed a full-scenario protection capability covering the before, during and after the user encounters fraud scenarios.
As early as the end of 2019, Ant Group, Du Xiaoman, Tianxing Digital, 360 Digital, etc. jointly issued anti-fraud public welfare initiatives to promote anti-fraud cooperation, use ai and other new technologies to serve anti-fraud work, and protect the safety of people's property from the technical end. At the same time, major financial technology companies themselves are also taking multiple measures to enhance anti-fraud capacity building, such as Du Xiaoman's reliance on advanced financial technology to ensure the safety of users' property.
In terms of mobile phone manufacturers, the mainland is the world's largest smartphone market, and smartphones are the nodes of telecom networks and Internet connections for everyone, and the efforts of mobile phone manufacturers in anti-fraud are crucial. In recent years, players, large and small, have put data security and privacy protection first, above the company's business interests. Taking vivo as an example, The words of Shen Wei, founder, CEO and president of vivo, showed vivo's firm determination to die for privacy and security.
"Data security and privacy protection is the basic rights of consumers, is the cornerstone of enterprises to gain consumer trust, we must take data security, privacy protection and compliance as the red line and basic bottom line that enterprises must not touch in their R&D and business activities, to guide the development of various work." His vivo has been committed to using the latest and best scientific and technological means to protect users' personal privacy from infringement, which is the most sincere protection for users.
Thousand Mirrors security architecture into vivo killer
I don't know if you found it, the butler products that come with mobile phones have a great tendency to replace traditional security vendors. For example, vivo has a built-in i-butler, but this is only the tip of the iceberg of vivo in privacy and security, and it actually puts in much more effort than the outside world sees. Taking X Fold/X Note as an example, as the main force of vivo's impact on the high-end market, they are also making full efforts in security on the basis of the main hard-core technology to respond to the safety demands of the political and business people.
The new vivo X series machine is equipped with Qualcomm Snapdragon 8, which not only has strong performance, but also has a built-in security processing unit SPU, which can meet the security requirements of financial-grade scenarios such as bank cards. At the same time, combined with excellent hardware-level protection capabilities such as SPU, vivo weaves a "safety net" in the mobile phone, that is, a thousand mirror security architecture, providing full-link privacy security and proper killer skills.
It takes the user as the core, based on the privacy protection default and design-driven principles, built into the vivo device, from the lowest chip, to the framework, to the kernel, and finally involves the application layer, to achieve a complete set of vertical privacy protection architecture. In other words, the Thousand Mirrors security architecture has systematic security capabilities, and the cooperation between each layer is closer and the degree of cooperation is higher, which can solve the problems that cannot be solved by a single technology product point, and bring full-link security protection to mobile phone devices.
You may say that the thousand mirrors security architecture cannot be seen or touched, how can it reflect its strength? In fact, the security architecture of a thousand mirrors can be perceived, I list three real hammers, you have a good feeling:
1. "Foresight in advance". Compared with "after-the-fact encounter", vivo hopes to "foresee in advance", which is the goal of vivo's security design through innovative technology, and also the value of innovative technology to protect privacy and security. In other words, vivo uses the power of science and technology to build a front-facing "anti-fraud firewall", that is, a thousand mirrors security architecture, by building personal information protection capabilities, to identify and protect users' privacy risks in advance.
Second, always guard. With the blessing of the Thousand Mirrors security architecture, vivo runs the privacy design through the entire product life cycle, including product design, development, deployment, operation, retirement and other stages. For example, in the product operation stage, it is necessary to record the use of data to provide a basis for data subjects and related parties to inquire. In short, the Thousand Mirrors security architecture has always been there, always guarding your private data and privacy security.
Third, humanistic care. Vivo adheres to the concept of "humanistic technology", emphasizing that technology is not cold, and provides warm privacy protection in privacy and security practices. Based on the security architecture of Thousand Mirrors, users can enter or set the atomic privacy system by simply tapping the fingerprint; the "Picture To Privacy Function" helps you remove privacy such as photo time and place. In addition, special groups such as the hearing impaired and the elderly can also feel the safety of vivo temperature.
In addition to the SPU and Thousand Mirrors security architecture, the X Fold/X Note also brings five privacy protection features, including the Thousand Mirrors Trusted Engine, Remote Lock Card, Minimal browser, Jovi Input Method Pro, and stealth mode. It has to be said that the sense of security of the vivo X series new machine is full, and while gaining praise from users, it has also been recognized by authoritative institutions - the highest five-level certificate of the "Mobile Intelligent Terminal Security Capability Grading Test" of the Double Xi Ti Ter Lab, which represents that the security capabilities have reached the highest level and are worthy of user trust in privacy and security.
Under the simple science popularization, the "Mobile Intelligent Terminal Security Capability Grading Test" of Thiel Lab includes a total of 84 evaluation items, which put forward strict standards from five levels: hardware security capabilities, operating system security capabilities, application layer security requirements, peripheral interface security capabilities and user data protection security capabilities, and divides terminal security capabilities into 5 levels according to basic security assurance, implementation difficulty, special security capabilities and other levels. X Fold/X Note passed all tests and obtained the highest level of security level of five certificates, with a very high gold content, strongly leading the industry.
Why is vivo so concerned about privacy and security?
At a glance at the whole leopard, X Fold/X Note gives users enough security to prove that vivo has made great achievements in privacy and security. Perhaps you will be curious, the mobile phone industry mainly competes with images, self-developed chips, marketing, channels and other elements, privacy and security is not a priority selling point, why is vivo so concerned about it? I conclude for two main reasons:
First, privacy protection has become the cornerstone of development. Vivo's sales in the domestic market are rising steadily, protecting the privacy and security of the majority of users, and becoming an unshirkable social responsibility, which is also the foundation of vivo's entire ecosystem. Especially when the digital economy is popular, as the core guarantee of the digital economy, digital security is given the meaning of the base, and vivo must pay attention to it in order to go further.
Just imagine, if there is no premise of ensuring user privacy and security, even more powerful functions are difficult to retain users, nor can it become a high-end brand trusted by users, and the circular development of the entire ecology is even more impossible to talk about. Therefore, no matter how much vivo attaches importance to it, it will uphold the most stringent privacy protection system and security compliance principles, and build a prosperous ecology with security as the cornerstone.
2. Compulsory subjects for internationalization. Privacy and security is not only a compulsory subject for high-end brands, but also a compulsory subject for vivo to enter overseas markets. From a global perspective, European and American countries have higher requirements for Internet security, data sovereignty, privacy security, etc., especially for Chinese mobile phone manufacturers. In this context, if vivo wants to achieve greater development in the global market, it must use the world's top privacy standards to demand itself.
It is not difficult to see that whether it is to develop the domestic market or dig for gold in the overseas market, vivo is imperative to strengthen its security capabilities. And it is so concerned about privacy and security, not intentionally competing with security vendors for this big cake, but starting from the service's own development strategy, taking privacy protection and security compliance as a major iron law, and constantly consolidating the foundation.
Happily, Vivo has been making progress. It actively participates in the formulation of external standards, for the National Information Security Standardization Committee TC260, China Communications Standardization Association CCSA related data security and personal information protection standards formulated, at present vivo led and participated in the compilation of personal information protection and data security in the field of the cumulative number of more than 60 standards.
At the same time, vivo also mentioned a number of privacy product certifications, at the end of 2020, it obtained ISO/IEC27001 information security certification, ISO/IEC27701 privacy information management system certification, and was recognized by two international authoritative certification bodies, TrustArc and ePrivacy, in April last year. Many honors are blessed, representing that vivo has reached the international leading level in user privacy and security, and more than 400 million users around the world can use vivo products with confidence.
Today, Vivo has formed a complete privacy protection system from security strategy awareness to security capacity building. And its small success in privacy and security is not achieved overnight, but the product of conscientious and continuous polishing. As early as 2019, vivo clarified the four long tracks of design, imaging, system and performance, recruiting advanced talents from all over the world and making long-term and continuous investment. Among them, the system level includes the underlying system and the use of AI technology, which is an important part of security capacity building, and vivo can be described as a broken heart.
Of course, whether it is anti-fraud or privacy protection, it is destined to be obstructive and long, vivo is far from the point of sitting back and relaxing, it is still necessary to adhere to long-term doctrine, bury the cause, and fight steadily to escort the digital life of hundreds of millions of users. To put it bluntly, vivo has been on the road, which is also a revelation to the industry and even the entire business society: only by maintaining strategic focus and constantly increasing investment can we create changes that truly bring happiness to users.