2008-04-16 15:04:47 +00:00
<?xml version="1.0" encoding="utf-8"?>
2008-04-16 15:40:19 +00:00
< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
2008-04-16 15:04:47 +00:00
< html xmlns = "http://www.w3.org/1999/xhtml" >
< head >
< title >
CAcert Communication Policy (CCP)
< / title >
< / head >
< body >
< h1 >
CAcert Communication Policy (CCP)
< / h1 >
< p >
2008-04-16 15:09:07 +00:00
< a href = "../PolicyOnPolicy.html" > < img src = "Images/cacert-wip.png" alt = "CAcert Work In Progress" height = "31" width = "88" style = "border-style: none;" / > < / a > < br / >
2008-04-16 15:04:47 +00:00
Author: Sam Johnston< br / >
Creation date: 2008-04-16< br / >
Status: WIP 2008-04-16< br / >
Next status: DRAFT 2008-04-XX< br / >
<!-- $Id$ -->
< / p >
< h2 >
0. Preliminaries
< / h2 >
< p >
This CAcert policy describes how CAcert communicates as required for achieving its mission.
< / p >
< h2 >
1. Scope
< / h2 >
2008-04-24 09:51:16 +00:00
< p >
CAcert Community Members are subjected to the CAcert Communication Agreement (CCA).
< / p >
2008-04-16 15:04:47 +00:00
< p >
This policy is applicable to:< br / >
< / p >
< ol >
2008-04-21 11:38:26 +00:00
< li > Press Releases and Announcements
2008-04-16 15:08:28 +00:00
< / li >
< li > Internet Email
< / li >
2008-04-18 16:28:19 +00:00
< li > Internet Relay Chat (IRC)
< / li >
2008-04-16 15:04:47 +00:00
< / ol >
< h2 >
2. Requirements
< / h2 >
< p >
This section describes all CAcert communication channels.< br / >
< / p >
< ol >
2008-04-16 15:08:28 +00:00
< li >
2008-04-21 11:38:26 +00:00
< strong > Press Releases and Announcements< / strong > < br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-alpha;" >
2008-09-15 14:35:52 +00:00
< li > CAcert Community Members may communicate on their areas, but these are considered community views.
2008-04-21 11:38:26 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Targeted announcements may be sent to a minority subset of users who have opted-in to receiving information on the topic.
2008-04-21 11:38:26 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Press releases and official announcements must be approved by the board and issued via:< br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-roman;" >
2008-04-19 08:49:56 +00:00
< li > Digitally signed email to appropriate mailing list(s).
2008-04-16 15:08:28 +00:00
< / li >
< li > Posting and indefinite archiving on the official CAcert web site(s)
< / li >
2008-04-16 15:04:47 +00:00
< / ol >
< / li >
< / ol >
2008-04-16 15:08:28 +00:00
< / li >
< li >
< strong > Internet Email< / strong > < br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-alpha;" >
< li >
2008-04-19 08:49:56 +00:00
< strong > Email Aliases< / strong > are official email addresses within the CAcert domain(s) (eg john@cacert.org).< br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-roman;" >
2008-09-15 14:35:52 +00:00
< li > All official CAcert communications must be conducted using an official address, which is typically a forwarding service.
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Access to full accounts (available only to officials listed on the organisation chart) shall be available via web interface and standard mail protocols.
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Outbound mail should contain the full name and short reference to the official capacity of the user: < i > John Citizen (CAcert AO) < john@cacert.org> < / i > .
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Role accounts (eg support@cacert.org) shall be implemented as a mailing list or automated issue tracking system as appropriate.
2008-04-16 15:04:47 +00:00
< / li >
< / ol >
< / li >
< li >
2008-04-19 08:49:56 +00:00
< strong > Mailing Lists< / strong > are automated distribution lists containing CAcert community members.< br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-roman;" >
2008-09-15 14:35:52 +00:00
< li > List management (new list creation, dead list removal) shall be managed by the board.
2008-04-18 16:31:39 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > List membership shall be restricted to CAcert Community members and all posts are contributions, as described in the CCA.
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Lists shall follow the naming convention of cacert-< listname> @lists.cacert.org, with important lists (eg support, board) aliased @cacert.org
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > List policy shall be set on a per-list basis (eg open/closed, searchable archives, etc.)< br / >
2008-04-16 15:04:47 +00:00
< ol >
2008-04-19 08:49:56 +00:00
< li > Open lists (eg cacert-policy) shall be accessible by anyone (including Internet search engines) and closed lists (eg cacert-board) only by list members.
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Posting to discussion lists (eg cacert-policy) must be restricted to list members and must not be restricted for role lists (eg cacert-board).
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Messages which do not meet list policy (eg size, non-member) must be immediately rejected.
2008-04-16 15:04:47 +00:00
< / li >
< / ol >
< / li >
2008-09-15 14:35:52 +00:00
< li > Subscription requests must be confirmed by the requestor and subscriber lists must not be revealed..
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Web based archives shall be maintained and authentication must reflect list policy.
2008-04-16 15:04:47 +00:00
< / li >
< / ol >
< / li >
< li >
2008-04-21 11:38:26 +00:00
< strong > Automated Email< / strong > is sent by various CAcert systems automatically< br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-roman;" >
2008-09-15 14:35:52 +00:00
< li > All new automated emails must be approved by the board.
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Automated emails should only be sent in response to a user action.
2008-04-16 15:04:47 +00:00
< / li >
< / ol >
< / li >
< li >
< strong > Personal Email< / strong > is individual personal addresses of CAcert Community members (eg john@gmail.com).< br / >
< ol style = "list-style-type: lower-roman;" >
2008-09-15 14:35:52 +00:00
< li > Personal email must not be used for official CAcert purposes.
2008-04-16 15:04:47 +00:00
< / li >
< / ol >
< / li >
< / ol >
< / li >
2008-04-18 16:28:19 +00:00
< li >
< strong > Internet Relay Chat (IRC)< / strong > < br / >
< ol style = "list-style-type: lower-alpha;" >
2008-09-15 14:35:52 +00:00
< li > An IRC service shall be maintained at irc.cacert.org which shall be available via SSL.
2008-04-18 16:28:19 +00:00
< / li >
< / ol >
< / li >
2008-04-16 15:04:47 +00:00
< / ol >
< h2 >
3. Implementation
< / h2 >
< p >
This section describes how CAcert communication channels are to be implemented.
< / p >
< ol >
2008-04-16 15:08:28 +00:00
< li >
< strong > General< / strong > < br / >
2008-04-16 15:04:47 +00:00
< ol style = "list-style-type: lower-alpha;" >
2008-09-15 14:35:52 +00:00
< li > CAcert System Administrators shall have discretion as to the technical implementation of this policy and shall report status to the board periodically.
2008-04-16 15:04:47 +00:00
< / li >
2008-04-16 15:08:28 +00:00
< / ol >
< / li >
< li >
< strong > Security< / strong > < br / >
< ol style = "list-style-type: lower-alpha;" >
2008-09-15 14:35:52 +00:00
< li > Authentication (where required) must be done via username and password and/or CAcert certificate.
2008-04-16 15:04:47 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Transport encryption must be used where possible.
2008-04-16 15:08:28 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > Content encryption may be used where appropriate.
2008-04-16 15:08:28 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > All outbound mail should be digitally signed.
2008-04-16 15:08:28 +00:00
< / li >
< / ol >
< / li >
< li >
< strong > Internet Email< / strong > < br / >
< ol style = "list-style-type: lower-alpha;" >
2008-09-15 14:35:52 +00:00
< li > All mails must be securely archived.
2008-04-16 15:08:28 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > All mails must be subject to appropriate spam prevention mechanisms (eg SpamAssassin, greylisting).
2008-04-16 15:08:28 +00:00
< / li >
2008-09-15 14:35:52 +00:00
< li > All mails must be subject to appropriate virus and content filtering (eg ClamAV, content types).
2008-04-16 15:04:47 +00:00
< / li >
< / ol >
< / li >
< / ol >
< p >
2008-04-16 15:09:07 +00:00
< a href = "http://validator.w3.org/check?uri=referer" > < img src = "Images/valid-xhtml11-blue" alt = "Valid XHTML 1.1" height = "31" width = "88" style = "border-style: none;" / > < / a >
2008-04-16 15:04:47 +00:00
< / p >
< / body >
< / html >