Annex 2-2 confidentiality commitment docx

Commitment letter of participating units in network attack and defense drill

The unit is aware of the importance of this exercise and the obligation of safety and confidentiality , And solemnly promise ：
One 、 Ensure the political reliability of the actors 、 Excellent quality , Be competent for this exercise task and ensure the safety and reliability of the attack process .
Two 、 Ensure that the personnel of our unit participating in the drill obey the order of the drill headquarters , Follow the command .
3、 ... and 、 Don't leak 、 Do not make use of the relevant data of the target system and the system vulnerabilities found in the exercise .
Four 、 Do not use the exercise behavior and process for commercial publicity .
5、 ... and 、 Achieve “ XVI prohibition ”：
1、 It is forbidden to talk about or disclose the relevant contents of the drill to irrelevant personnel . This drill will not be publicized , During the drill, visitors and participants are not allowed to take photos , Hair circle of friends .
2、 It is forbidden to connect the relevant data in the drill to the Internet .
3、 Drill implementation stage , Private communication between the offensive and defensive sides is prohibited .
4、 It is forbidden to perform destructive operations on any system .
5、 It is forbidden to bribe the personnel of the attacked party 、 Physical intrusion 、 Cut off and monitor the external optical fiber 、 Attack by means of radio interference and other attacks that directly affect the operation of the target system , The way of attack cannot damage personal safety .
6、 Non registered IP Attack with the springboard .
7、 Without the approval of the drill headquarters , The attack team cannot change the actors without authorization
8、 Without the approval of the drill headquarters , The attacker is forbidden to attack key parts .
9、 It is forbidden to use with automatic deletion 、 Copy the target operating system files 、 Damage boot sector 、 Active diffusion 、 Infection file 、 Attack tools that cause server downtime and other destructive functions
10、 It is forbidden to disclose and unauthorized use the system hidden dangers and vulnerabilities found in the drill .
11、 Prohibit warehouse operation , Do not download personal information 、 Business data and source code
12、 It cannot affect the normal operation of the network
13、 Data cannot be added, deleted or modified 、 data 、 Catalog 、 structure
14、 Cannot implement traffic attack . Denial of service attacks （ Including slow denial of service attacks ).
15、 You cannot upload files other than the specified verification code 、 Program
16、 Do not publish without authorization 、 Retain 、 Use the information and data you have . After the drill , Please send the objective and other relevant documents provided by the organizer immediately 、 The results and reports generated by the drill are deleted by themselves

Legal representative （ Or authorized person ） The signature office ：
Seal of commitment unit ：
Japan period ：

download

Click to download

https://download.csdn.net/download/qq_41901122/85865296