The latest security information on Intel® products.

Intel Security Vulnerability Researcher Community Code of Conduct

This Code of Conduct applies to all interactions among persons reporting or discussing security issues with Intel employees (‘Community Members’). It outlines the expected/acceptable standards of behavior, classifies some unacceptable behaviors, and describes possible enforcement actions for the Community Member interactions if unacceptable behavior arises during crowdsourced security vulnerability research such as the Intel® Bug Bounty Program, Project Circuit Breaker, vulnerability reporting, or any other communications interactions such as slack channels, email communication, or in person communications.

Behavioral Standards

Effective communication and collaboration among Community Members are critical to the continued success of the community and collective ability to improve the security of Intel® product offerings.  All Community Members must act and communicate professionally, in accordance with the behavioral standards described in this document.

 

The following are examples of unacceptable behavior that will not be tolerated:

Behavior Type

Definition and Example Behavior

Abusive Behavior
  • Offensive user-generated or submitted content related to gender, sexual orientation, race, religion, disability, etc. 
  • Abusive or threatening language.

Harassment
  • Intimidation, stalking or following (including seeking out uninvited personal contact with Community Members via personal phone or email), harassing materials, photography, or recording.
  • Personal attacks on other Community Members (such as through hurtful, insulting, or hostile comments).

Disruptive Behavior
  • ​​​Repeated inquiries and/or inappropriate demands for updates to a case, including cases that have been closed by Intel.

Extortion Threat
  • Threatening to extort Intel, customers, vendors, product teams, employees, or other Community Members.

Out of Band Communications or Social Engineering
  • Communicating outside of the approved secure communications channels provided or explicitly outlined by Intel. 
  • Any unauthorized attempts to socially engineer another party through impersonation of an Intel employee, another researcher, a program member, a security team, or any other Community Member will not be tolerated.

Unauthorized Access and Disclosure
  • Unauthorized access to or disclosure of confidential information, proprietary information, or personal information belonging to Intel or any other Community Member. 

Enforcement Dodge
  • Using new personas, accounts, and/or intermediaries to avoid enforcement of code of conduct violations. 
View all Show less

Community Reporting

If a Community Member observes another Community Member violating this Code of Conduct and/or exhibiting malicious behaviors that are not conducive to building a safe and positive professional environment, please report it to the Intel’s support team at Sec.Vuln.CoC@intel.com.

Enforcement Actions

Intel reserves the right to provide corrective action consistent with industry practices which may include permanently banning a Community Member from further participation in any or all Intel vulnerability reporting programs. Intel evaluates incidents individually and will implement corrective actions it deems necessary to address the incident.

 

We are grateful for your support in fortifying the Intel community’s experience.

Need product support?

If you...

  • Have questions about the security features of an Intel product
  • Require technical support
  • Want product updates or patches


Please visit Support & Downloads.