@ -2,27 +2,44 @@
< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"< !DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
< html xmlns = "http://www.w3.org/1999/xhtml" > < html xmlns = "http://www.w3.org/1999/xhtml" >
< head >
< head >
< title >
< title > Organisation Assurance Policy < / title >
Organisation Assurance Policy
< style type = "text/css" >
< / title >
<!--
< / head >
.comment {
< body >
color : steelblue;
}
< h1 >
-->
Organisation Assurance Policy
< / style >
< / h1 >
< p >
< / head >
< a href = "../PolicyOnPolicy.html" > < img src = "../cacert-draft.png" alt = "CAcert Draft" height = "31" width = "88" style = "border-style: none;" / > < / a > < br / >
< body >
Document: OAP COD11< br / >
Author: Jens Paul< br / >
< div class = "comment" >
Creation date: 2007-09-18< br / >
< table width = "100%" >
Status: POLICY/DRAFT 2007-09-18 < a href = "http://wiki.cacert.org/wiki/TopMinutes-20070917" > m20070918.x < / a > < br / >
Changed: 2008-04-01 Teus Hagen policy list vote; add advisors and board< br / >
< tr >
Next status: POLICY 2008< br / >
< td >
<!-- $Id$ -->
Name: OAP < a style = "color: steelblue" href = "//svn.cacert.org/CAcert/Policies/ControlledDocumentList.html" > COD11< / a > < br / >
< / p >
< h2 > < a name = "0" > 0. < / a > Preliminaries < / h2 > Status: POLICY/DRAFT < a style = "color: steelblue" href = "//wiki.cacert.org/wiki/TopMinutes-20070917" > m20070918.x < / a > < br / >
< span class = "draftadd" > DRAFT p20080401 < / span > < br / >
Editor: Jens Paul < br / >
Licence: < a style = "color: steelblue" href = "//wiki.cacert.org/Policy#Licence" title = "this document is Copyright © CAcert Inc., licensed openly under CC-by-sa with all disputes resolved under DRP. More at wiki.cacert.org/Policy" > CC-by-sa+DRP < / a > < br / > < / td >
< td valign = "top" align = "right" >
< a href = "//www.cacert.org/policy/PolicyOnPolicy.php" > < img src = "images/cacert-policy.png" alt = "OAP Status - POLICY" height = "31" width = "88" style = "border-style: none;" / > < / a > < br / >
< a href = "//www.cacert.org/policy/PolicyOnPolicy.php" > < img src = "images/cacert-draft.png" alt = "OAP Status - DRAFT" height = "31" width = "88" style = "border-style: none;" / > < / a >
< / td >
< / tr >
< / table >
< / div >
< h1 > Organisation Assurance Policy < / h1 >
< h2 id = "s0" > 0. Preliminaries < / h2 >
< p > < p >
This policy describes how Organisation Assurers ("OAs")
This policy describes how Organisation Assurers ("OAs")
@ -36,7 +53,7 @@ This policy is not a Controlled document, for purposes of
Configuration Control Specification ("CCS").
Configuration Control Specification ("CCS").
< / p > < / p >
< h2 > < a name = "1" > 1. < / a > < / h2 > < h2 id = "s1" > 1. Purpose < / h2 >
< p > < p >
Organisations with assured status can issue certificates
Organisations with assured status can issue certificates
@ -60,9 +77,9 @@ and as described in the CPS.
< / li > < / ul > < / li > < / ul >
< h2 > < a name = "2" > 2. < / a > < / h2 > < h2 id = "s2" > 2. Roles and Structure < / h2 >
< h3 > < a name = "2.1" > 2.1 < / a > < / h3 > < h3 id = "s2.1" > 2.1 Assurance Officer < / h3 >
< p > < p >
The Assurance Officer ("AO")
The Assurance Officer ("AO")
@ -80,7 +97,7 @@ The OA is appointed by the Board.
Where the OA is failing the Board decides.
Where the OA is failing the Board decides.
< / p > < / p >
< h3 > < a name = "2.2" > 2.2 < / a > < / h3 > < h3 id = "s2.2" > 2.2 Organisation Assurers < / h3 >
< p > < p >
< / p > < / p >
@ -134,7 +151,7 @@ Where the OA is failing the Board decides.
< / ol > < / ol >
< h3 > < a name = "2.3" > 2.3 < / a > < / h3 > < h3 id = "s2.3" > 2.3 Organisation Assurance Advisor ("OAA") < / h3 >
< p > In countries/states/provinces where no OA Assurers are
< p > In countries/states/provinces where no OA Assurers are
operating for an OA Application (COAP) the OA
operating for an OA Application (COAP) the OA
can be advised by an experienced local CAcert
can be advised by an experienced local CAcert
@ -148,7 +165,7 @@ Where the OA is failing the Board decides.
< / p >
< / p >
< h3 > < a name = "2.4" > 2.4 < / a > < / h3 > < h3 id = "s2.4" > 2.4 Organisation Administrator < / h3 >
< p > < p >
The Administrator within each Organisation ("O-Admin")
The Administrator within each Organisation ("O-Admin")
@ -178,9 +195,9 @@ and the issuing of certificates.
< / ol > < / ol >
< h2 > < a name = "3" > 3. < / a > < / h2 > < h2 id = "s3" > 3. Policies < / h2 >
< h3 > < a name = "3.1" > 3.1 < / a > < / h3 > < h3 id = "s3.1" > 3.1 Policy < / h3 >
< p > < p >
There is one policy being this present document,
There is one policy being this present document,
@ -194,7 +211,7 @@ and several subsidiary policies.
< li > Organisations are assured under an appropriate subsidiary policy. < / li >
< li > Organisations are assured under an appropriate subsidiary policy. < / li >
< / ol > < / ol >
< h3 > < a name = "3.2" > 3.2 < / a > < / h3 > < h3 id = "s3.2" > 3.2 Subsidiary Policies < / h3 >
< p > < p >
The nature of the Subsidiary Policies ("SubPols"):
The nature of the Subsidiary Policies ("SubPols"):
@ -224,7 +241,7 @@ The nature of the Subsidiary Policies ("SubPols"):
policy approval process.
policy approval process.
< / li > < / ol > < / li > < / ol >
< h3 > < a name = "3.3" > 3.3 < / a > < / h3 > < h3 id = "s3.3" > 3.3 Freedom to Assemble < / h3 >
< p > < p >
Subsidiary Policies are open, accessible and free to enter.
Subsidiary Policies are open, accessible and free to enter.
@ -257,9 +274,9 @@ Subsidiary Policies are open, accessible and free to enter.
< / li > < / ol > < / li > < / ol >
< h2 > < a name = "4" > 4. < / a > < / h2 > < h2 id = "s4" > 4. Process < / h2 >
< h3 > < a name = "4.1" > 4.1 < / a > < / h3 > < h3 id = "s4.1" > 4.1 Standard of Organisation Assurance < / h3 >
< p > < p >
The essential standard of Organisation Assurance is:
The essential standard of Organisation Assurance is:
< / p > < / p >
@ -279,9 +296,7 @@ The essential standard of Organisation Assurance is:
requestor can sign on behalf of the organisation.
requestor can sign on behalf of the organisation.
< / li > < li >
< / li > < li >
the organisation has agreed to the terms of the
the organisation has agreed to the terms of the
< b >
CAcert Community Agreement
CAcert Community Agreement
< / b > ,
and is therefore subject to Arbitration.
and is therefore subject to Arbitration.
< / li > < / ol > < / li > < / ol >
@ -290,7 +305,7 @@ The essential standard of Organisation Assurance is:
are stated in the SubPol.
are stated in the SubPol.
< / p > < / p >
< h3 > < a name = "4.2" > 4.2 < / a > < / h3 > < h3 id = "s4.2" > 4.2 COAP < / h3 >
< p > < p >
The COAP form documents the checks and the resultant
The COAP form documents the checks and the resultant
assurance results to meet the standard.
assurance results to meet the standard.
@ -312,7 +327,7 @@ Additional information to be provided on form:
domain name(s)
domain name(s)
< / li > < li >
< / li > < li >
Agreement with
Agreement with
< b > < / b >
CAcert Community Agreement.
Statement and initials box for organisation
Statement and initials box for organisation
and also for OA.
and also for OA.
< / li > < li >
< / li > < li >
@ -328,7 +343,7 @@ and indication provided that the English is the
ruling language (due to Arbitration requirements).
ruling language (due to Arbitration requirements).
< / p > < / p >
< h3 > < a name = "4.3" > 4.3 < / a > < / h3 > < h3 id = "s4.3" > 4.3 Jurisdiction < / h3 >
< p > < p >
Organisation Assurances are carried out by
Organisation Assurances are carried out by
@ -338,7 +353,7 @@ Actions carried out by OAs are under this regime.
< ol type = "a" > < li > < ol type = "a" > < li >
The organisation has agreed to the terms of the
The organisation has agreed to the terms of the
< b > < / b >
CAcert Community Agreement.
< / li > < li >
< / li > < li >
The organisation, the Organisation Assurers, CAcert and
The organisation, the Organisation Assurers, CAcert and
other related parties are bound into CAcert's jurisdiction
other related parties are bound into CAcert's jurisdiction
@ -347,12 +362,12 @@ Actions carried out by OAs are under this regime.
The OA is responsible for ensuring that the
The OA is responsible for ensuring that the
organisation reads, understands, intends and
organisation reads, understands, intends and
agrees to the
agrees to the
< b > < / b >
CAcert Community Agreement.
This OA responsibility should be recorded on COAP
This OA responsibility should be recorded on COAP
(statement and initials box).
(statement and initials box).
< / li > < / ol > < / li > < / ol >
< h2 > < a name = "5" > 5. < / a > < / h2 > < h2 id = "s5" > 5. Exceptions < / h2 >
< ol type = "a" > < li > < ol type = "a" > < li >
@ -383,8 +398,6 @@ Actions carried out by OAs are under this regime.
This means that the anglo law tradition of unregistered DBAs
This means that the anglo law tradition of unregistered DBAs
is not accepted without further proof.
is not accepted without further proof.
< / li > < / ol >
< / li > < / ol >
< p > < a href = "http://validator.w3.org/check?uri=referer" > < img src = "http://www.w3.org/Icons/valid-xhtml11-blue" alt = "Valid XHTML 1.1" height = "31" width = "88" style = "border-style: none;" / > < / a >
< / body >
< / p >
< / body >
< / html > < / html >
Ian Grigg
12 years ago