How to report security issues to A-OK?

A-OK welcome all reports about security-related issues incidents,including followings:

(a) hardware of the product;

(b) software which is pre-installed on the product at the point at which the product is supplied to a customer;

(c) software which must be installed on the product for all manufacturer’s intended purposes of the product that use—

(i) hardware;

(ii) software that is pre-installed at the point at which the product is supplied to a

customer; or

(iii) software that is installable;

(d) software used for, or in connection with, any manufacturer’s intended purpose of the product unless the product is a smartphone or a tablet computer capable of connecting to cellular networks.

Please leave your email address, a phone number or any other preferred way we can use to get in touch with you.

1.The product type, product name and model number of the affected hardware products.

2.The name, description and version number or SN number.

3.A full and detailed description of the problem or issue, along with any background information that you believe is relevant, and any other pertinent information that may help us reproduce and/or resolve the issue.

What happens next?

Once we have resolved the reported issue(s), we will provide a suitable solution to all affected customers. We will treat this with the utmost priority and make the solution available as soon as it practical to do so.
A-OK will also maintain a list of the latest software updates, along with descriptions of the issues that have been fixed. Although we will notify customers wherever possible, we also recommend that customers visit this page regularly to make sure they are aware of the latest updates.

A-OK Product Security Advisory

Passwords

1.Passwords must be unique per product or defined by the user of the product.

2.Passwords which are unique per product must not be :

(a)based on incremental counters ;

(b)based on or derived from publicly available information.

(c) based on or derived from unique product identifiers, such as serial numbers, unless this is done using an encryption method, or keyed hashing algorithm, that is accepted as part of good industry practice;

(d) otherwise guessable in a manner unacceptable as part of good industry practice.

3.passwords do not include—

(a) cryptographic keys;

(b) personal identification numbers used for pairing in communication protocols which do not form part of the internet protocol suite; or

(c) application programming interface keys.

Security reporting

How to report security issues to A-OK?

If you meet any problem during using the A-OK products, you can get to us by the email cnaok6@aoksz.com,A-OK team will communicate with you via e-mail. First receipt of the vulnerability report within 7 days. After this reporter will be contacted in case of questions and with progress updates at least every 30 days until the vulnerability is resolved. When you send us the security reporting email, please include below information in your email:

l Your Name

l Your contact (email and telephone number)

l Your problem description

l A-OK Product information(product model name and product SN number)

A-OK will work with you and we will make our best effort to understand and resolve the vulnerability quickly.