Confidential computers are forbidden to install software downloaded through the Internet at will, and confidential computers are forbidden to uninstall antivirus software, host monitoring and auditing software at will. Confidential computers shall provide login passwords that meet the requirements of security and confidentiality. It is forbidden to use wireless devices such as wireless mouse and keyboard, and it is forbidden to store state secrets and internal sensitive information through WeChat, Weibo, QQ, email and cloud disk.
Confidential computers and non-confidential computers are prohibited from using public office automation equipment, and confidential printers, photocopiers and other equipment are prohibited from wirelessly connecting with confidential computers. When the classified equipment breaks down and needs to be repaired by the personnel of other units, there should be on-site supervision by the personnel of this unit. Abandoned confidential office automation equipment (toner cartridge, hard disk, etc.). ) should be sent to the secret vector destruction center for destruction. It is forbidden to print and copy confidential information in non-confidential printers and copiers, and it is forbidden to transmit confidential information through ordinary fax machines.
counter-measure
Pay attention to the security vulnerability information of office automation equipment in time. When upgrading the firmware, you should download the system firmware upgrade package in official website or contact the official after-sales support personnel of the equipment, and check the hash value and digital signature of the firmware file before installation, and then install it after it is verified to be safe.
Before using classified office automation equipment, its hardware components and internal mechanical structure should be thoroughly checked to ensure that it does not have wireless communication modules such as Wi-Fi and Bluetooth, and its mechanical structure has not been illegally modified. If there is a wireless communication module, it should be removed before it is used to handle confidential documents. If there are signs that the mechanical structure has been modified, it should be stopped immediately and properly sealed for future reference.
When purchasing office automation equipment dealing with classified information, we should carefully check whether the equipment has the test certificate and test report issued by relevant national testing institutions, and check whether its electromagnetic leakage radiation protection level meets the requirements of relevant classified levels.