By participating in Pomerium, Inc. Pomerium’s Capture the Flag competition (the “Competition”), you acknowledge that you have read and agree to Pomerium’s Terms of Service, Privacy Policy, and the following terms and conditions (the “Rules”). THE COMPETITION IS VOID WHERE PROHIBITED OR RESTRICTED BY LAW OR WHERE BONDING, REGISTRATION, OR OTHER REQUIREMENTS WOULD BE REQUIRED BUT HAVE NOT BEEN MET. ALL APPLICABLE FEDERAL, STATE AND LOCAL LAWS APPLY. POMERIUM RESERVES THE RIGHT TO TERMINATE OR DISCONTINUE THE COMPETITION AT ANY TIME WITHOUT NOTICE AT ITS SOLE DISCRETION. POMERIUM MAY REVISE THESE RULES OR OUR TERMS OF SERVICE FROM TIME TO TIME.
Pomerium reserves the right to reduce scoring for violations of these Rules.
Prize. The Competition will be conducted under the supervision of Pomerium and in accordance with the scoring criteria set forth above. The decisions of Pomerium are final and binding in all matters relating to this Competition. Winners (defined below) will be notified by email; provided, however, that Pomerium reserves the right to determine an alternate method of notification. Pomerium will award the Competition winner (the “Winner”) the prize (the “Prize”) within thirty (30) days of Pomerium validating the Winner’s compliance with these Rules. Pomerium reserves the right to void the Winner the Winner does not claim their prize within ninety (90) days of being informed they are the Winner. Prize payment will be via wire transfer or ACH to Winner's designated bank account. The Winner is responsible for providing Pomerium with accurate bank account information. All Prizes are currently paid in U.S. dollars via ACH. Pomerium may also need to collect a form W-9 from U.S. citizens or form W-8 BEN from non-U.S. before any such payment can be made. If you are unwilling or unable to submit this documentation, we reserve the right to not award your Prize. You are solely responsible for any applicable taxes, withholding or otherwise, arising from or relating to your participation in the Competition, including from any Prizes that you may receive, in accordance with applicable law. There may be additional restrictions on your ability to participate in the Competition, depending upon applicable law.
Intellectual Property. You hereby grant Pomerium and its successors a perpetual, irrevocable, worldwide, transferrable, royalty-free, non-exclusive, sublicensable right and license to freely exploit and exercise all technology and intellectual property rights in the Submission Materials (including any modifications, improvements, and derivatives of any of them) for any purpose.
Representations, Warranties, and Restrictive Covenants. Your represent and warrant that (a) your participation in the Competition will not violate any applicable law, disrupt or compromise any data that is not your own or violate the rights of any person, (b) are not participating from a country against which the United States has issued export sanctions or other trade restrictions, including but not limited to Cuba, Iran, Russia, North Korea, the Sudan, and Syria, and (c) the Submission Materials are your original creation; the Flag was not copied (in whole or in part) from any other work; you have obtained a binding written release from (and signed by) every other person or copyright holder who (or whose work is) shown in the Submission Materials, as necessary to grant Pomerium the rights provided herein; the Submission Materials do not infringe or violate any copyright right, trademark right, publicity right, privacy right or other proprietary right of any person or entity (including without limitation, any property owner); and (d) Pomerium will not be obligated to pay any compensation to, or permit any participation by, any third party in connection with the use, publication, distribution or exploitation of the Submission Materials. It is your sole responsibility to comply with any agreements with or obligations to third parties that you may have, including any policies of your employer, that may affect your eligibility to participate in this Competition. Further, you agree that you will not at any time:
attempt to gain unauthorized access to another user’s account or data.
undertake any action or attack that could harm the reliability or integrity of our products, services or data. Denial-of-service and spam attacks are not allowed.
impact others’ access to or use of Pomerium’s products or services in connection with your testing, including testing for vulnerabilities in repositories that you do not own. We may suspend your Pomerium account, if any, and ban your IP address if you do so.
use scanners or automated tools to find vulnerabilities. They are noisy, and we may suspend your Pomerium account, if any, and ban your IP address.
interfere with other Competition participants (hereafter “Participants”).
share Flags or solutions with any third party including other Participants.
exceed or violate the following technical limitations:
Maximum bandwidth usage: 10Mbps per Participant
Maximum of three (3) login attempts per one (1) minute period
No physical attacks or hardware manipulation
No attacks against authentication systems
undertake or attempt to undertake actions such as social engineering, phishing, DoS attacks, black hat SEO techniques or spamming, physical attacks against our employees, users, affiliates or infrastructure or other similarly questionable things. We also discourage the use of any vulnerability testing tools that automatically generate significant volumes of traffic.
Limitation of Liability. NOTWITHSTANDING ANYTHING ELSE HEREIN OR OTHERWISE, POMERIUM AND/OR ITS VENDORS SHALL NOT BE LIABLE OR OBLIGATED WITH RESPECT TO ANY SUBJECT MATTER OF THESE RULES OR UNDER CONTRACT, NEGLIGENCE, STRICT LIABILITY OR OTHER LEGAL OR EQUITABLE THEORY FOR (A) ANY SPECIAL, INCIDENTAL, CONSEQUENTIAL, OR EXEMPLARY DAMAGES (INCLUDING, WITHOUT LIMITATION, LOSS OF REVENUE, GOODWILL, OR ANTICIPATED PROFITS), (B) DATA LOSS OR COST OF PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES, (C) ANY MATTER BEYOND POMERIUM’S REASONABLE CONTROL; OR (D) DIRECT DAMAGES EXCEEDING $100.
Release. By participating in the Competition, you agree to and hereby do release and hold harmless Pomerium, and their respective parents, subsidiaries and affiliated entities, directors, officers, employees, attorneys, agents, and representatives from any damage, injury, death, loss, claim, action, demand, or other liability (collectively, “Claims”) that may arise from your participation in the Competition.
Miscellaneous. Any person attempting to defraud or in any way tamper with this Competition may be prosecuted to the full extent of the law. In the event of cancellation or suspension, Pomerium shall promptly post a notice on Pomerium’s website to such effect. The Rules shall be governed by California law, without regard to conflicts of laws provisions. By participating in this Competition, you agree that any dispute or litigation arising from or relating to this Competition shall be determined by binding arbitration only in San Francisco, CA, by and under the Streamlined Arbitration Rules and Procedures of JAMS, and judgment on the award rendered by the arbitrator(s) may be entered in any court having jurisdiction thereof. Notwithstanding the foregoing, Pomerium may seek equitable relief in any court of competent jurisdiction. If any provision of these rules is held to be illegal or unenforceable, such provision shall be limited or eliminated to the minimum extent necessary so that these rules otherwise remain in full force and effect and enforceable. If you have any questions or concerns, please email us at ctf@pomerium.com.
