Go homepage(回首页) Upload pictures (上传图片) Write articles (发文字帖)
The author:(作者)qqpublished in(发表于) 2014/6/6 8:32:09 Against a deduction of legalisation fees qiemi the rogue, the Ministry is establishing a blacklist,
Against a deduction of legalisation fees qiemi the rogue, the Ministry is establishing a blacklist-blacklisted, malware-IT news Against a deduction of legalisation fees qiemi the rogue, the Ministry is establishing a blacklist
June 5 message, the Ministry issued on the issuance of special action programmes for combating malicious programs control the mobile Internet notice (hereinafter "notice"), ready for the app store safety checks during the campaign.
This inspection purpose comb inside the app store basic information, understand the basic security conditions in app store, urged the boot before the app store last audit information among developers, application security testing reports, user complaints and other safety management systems, implementation of network security responsibilities.
Notification under requires, in application software last Qian, application shop should themselves or delegate third party on its for security detection, on contains malicious buckle fee, and information steal, and remote control, and malicious spread, and tariff consumption, acts, and contains legal regulations prohibited content of application software, shall not last publishing, and will its into application software blacklist, while notification application shop for Xia rack disposal, on refused to Xia rack of for open exposure.
Following is the full text of the notice:
All provinces, autonomous regions and municipalities directly under the communications authority, the national computer network emergency treatment Coordination Center, China Academy of telecommunication research of the Department:
According to the Ministry of industry and information Ministry of Administration for industry and commerce on the issuance of special action programmes for combating malicious programs control the mobile Internet notice (Ministry of the HSP (2014), 153th), to prepare for app store safety checks during the campaign, the relevant notice is as follows:
Purpose, check
Comb inside the app store basic information, understand the basic security conditions in app store, urged the boot before the app store last audit information among developers, application security testing reports, user complaints and other safety management systems, implementation of network security responsibilities. Through the security check for the app store, to build app store lay a good foundation for the long-acting mechanism of safety management.
Second, check based on
Application shop belonging to Internet information service, should comply with national Standing Committee on strengthened network information protection of decided under, and People's Republic of China telecommunications regulations under, and Internet information service management approach under, and telecommunications business operating license management approach under, and non-operating sexual Internet information service record management approach under, and communications network security protection management approach under, and telecommunications and Internet user personal information protection provides under, legal regulations, and sector regulations of provides, implementation related network security responsibility.
Three main tasks
(A) carry out diagnostic investigations. Ofcom in accordance with app store verification app store in the area of the seat of the main comb, and after verifying the situation before June 12 communications guarantee authority. App store access basic information including the license/registration number, the server address, domain name, operating principal, owner, contact number and contact information, online applications, and so on. National computer network emergency treatment Coordination Center (hereinafter referred to as CNCERT) for assistance.
(B) the organization promoting training. OFCOM organization territoriality applied before June 30, the store announcement, basic telecommunications enterprises to carry out special operations. App store references to the mobile Internet Network Security Guide (see annex), to the app store, informed of their duties and obligations shall fulfil the safety, urging its self-examination in order, establish a safety management system.
(C) carry out on-site inspections. The communications authority by reference to the mobile Web app store Guide to network security responsibilities, combined with the app store, the number and type, select a certain number of app stores for on-site inspections, initiated the implementation of safety responsibilities, safety management systems. Inspection may entrust qualified professional body. Depending on the situation, fill out the questionnaire on the safety management of mobile Internet applications store and the app store survey table of safety management of mobile Internet, communications guarantee authority.
(Iv) application security testing. Various Ofcom technical forces in the region in the app store applications for remote or on-site sampling. To found a phone wiretap, privacy theft, malicious service, lured obviously malicious programs against consumers such as fraud, informed app store shelves disposal, refusing to off the shelf for public exposure. Sampling procedure, Ofcom to strengthen relevant technical guidance, ensure the fairness of test results.
Communications Security Bureau Department of entrusted CNCERT, China Academy of telecommunication research, nationwide last applications in the app store, remote chouce, chouce results verified by CNCERT responsible for summary, communications guarantee authority and notify the relevant traffic authority, by associated Communications Authority notice store malicious programs. Summary the verification process, CNCERT finds malicious programs do check, if it determines an ambiguity, you can organize a number of professional testing organization jointly identified.
Ministry of industry and information technology, communication guarantee authority
赞