Trees are now one version. Join of the document version tree.

git-svn-id: http://svn.cacert.org/CAcert/Policies@731 14b1bab8-4ef6-0310-b690-991c95c89dfd
This commit is contained in:
Teus Hagen 2008-04-01 19:20:41 +00:00
parent cab97b8a54
commit 2089f1148e
2 changed files with 137 additions and 96 deletions

View file

@ -1,53 +1,41 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
"http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>
Organisation Assurance Policy
</title>
</head>
<body>
<p>
<center>
<big>
<br><b>WARNING:</b><br>
The proper policy document is located<br>
<a href="http://www.cacert.org/policy/OrganisationAssurancePolicy.php">
on the CAcert website </a>.<br>
</big></b>
This document is a working draft to include<br>
future revisions only, and is currently<br>
only relevant for the [policy] group.<br>
</center>
</p>
<html> <h1>
<head><title>Organisation Assurance Policy</title></head> Organisation&nbsp;Assurance&nbsp;Policy
<body> </h1>
<p>
<center> <a href="../PolicyOnPolicy.html"><img src="../cacert-draft.png" alt="CAcert Draft" height="31" width="88" style="border-style: none;" /> </a><br />
<big> Document: OAP COD11<br />
<br><b>WARNING:</b><br> Author: Jens Paul<br />
The proper policy document is located<br> Creation date: 2007-09-18<br />
<a href="http://www.cacert.org/policy/OrganisationAssurancePolicy.php"> Status: POLICY 2007-09-18 <a href="http://wiki.cacert.org/wiki/TopMinutes-20070917">m20070918.x </a><br />
on the CAcert website</a>.<br> Changed: 2008-04-01 Teus Hagen policy list vote; add advisors and board<br />
</big></b> Next status: POLICY 2008-4-08<br />
This document is a working draft to include<br> <!-- $Id$ -->
future revisions only, and is currently<br> </p>
only relevant for the [policy] group.<br> <h2> <a name="0">0. </a> Preliminaries </h2>
</center>
<table width="100%">
<tr>
<td> OAP </td>
<td> </td>
<td width="20%"> Jens </td>
</tr>
<tr>
<td> POLICY </td>
<td> </td>
<td> <a href="http://wiki.cacert.org/wiki/TopMinutes-20070917">m20070918.x</a> </td>
</tr>
<tr>
<td> COD11 </td>
<td> </td>
<td> </td>
</tr>
<tr>
<td> </td>
<td > <b>Organisation&nbsp;Assurance&nbsp;Policy</b> </td>
<td> </td>
</tr>
</table>
<h2> <a name="0"> 0. </a> Preliminaries </h2>
<p> <p>
This policy describes how Organisation Assurers ("OAs") This policy describes how Organisation Assurers ("OAs")
@ -87,11 +75,11 @@ and as described in the CPS.
<h2> <a name="2"> 2. </a> Roles and Structure </h2> <h2> <a name="2"> 2. </a> Roles and Structure </h2>
<h3> <a name="2.1"> 2.1 </a> Assurance Officer </h3> <h3> <a name="2.1"> 2.1 </a> Assurance Officer </h2>
<p> <p>
The Assurance Officer ("AO") The Assurance Officer ("AO")
manages this policy and reports to the board. manages this policy and reports to the CAcert Inc. Committee (Board).
</p> </p>
<p> <p>
@ -100,6 +88,10 @@ the CAcert Organisation Assurance Programme form ("COAP"),
OA training and testing, manuals, quality control. OA training and testing, manuals, quality control.
In these responsibilities, other Officers will assist. In these responsibilities, other Officers will assist.
</p> </p>
<p>
The OA is appointed by the Board.
Where the OA is failing the Board decides.
</p>
<h3> <a name="2.2"> 2.2 </a> Organisation Assurers </h3> <h3> <a name="2.2"> 2.2 </a> Organisation Assurers </h3>
@ -146,11 +138,30 @@ In these responsibilities, other Officers will assist.
as supervised, trained and tested. as supervised, trained and tested.
</li> </li>
</ol> </ol>
</li>
<li>The OA can decide when a CAcert
(individual) Assurer
has done several OA Application Advises to appoint this
person to OA Assurer.
</li>
</ol> </ol>
<h3> <a name="2.3"> 2.3 </a> Assurance Advisors </h3>
<p>In countries/states/provinces where no OA Assurers are
operating for an OA Application (COAP) the OA
can be advised by an experienced local CAcert
(individual) Assurer to take the decision
to accept the OA Application (COAP) of the organisation.
</p>
<p>
The local Assurer must have at least 150 Points,
should know the language, and know
the organisation trade office registry culture and quality.
</p>
<h3> <a name="2.3"> 2.3 </a> Organisation Administrator </h3> <h3> <a name="2.4"> 2.4 </a> Organisation Administrator </h3>
<p> <p>
The Administrator within each Organisation ("O-Admin") The Administrator within each Organisation ("O-Admin")
@ -226,7 +237,7 @@ The nature of the Subsidiary Policies ("SubPols"):
policy approval process. policy approval process.
</li></ol> </li></ol>
<h3> <a name=""> </a> 3.3 Freedom to Assemble </h3> <h3> <a name="3.3"> 3.3 </a> Freedom to Assemble </h3>
<p> <p>
Subsidiary Policies are open, accessible and free to enter. Subsidiary Policies are open, accessible and free to enter.
@ -282,8 +293,8 @@ The essential standard of Organisation Assurance is:
</li><li> </li><li>
the organisation has agreed to the terms of the the organisation has agreed to the terms of the
<b> <b>
CAcert Community Agreement, CAcert Community Agreement
</b> </b>,
and is therefore subject to Arbitration. and is therefore subject to Arbitration.
</li></ol> </li></ol>
@ -292,7 +303,7 @@ The essential standard of Organisation Assurance is:
are stated in the SubPol. are stated in the SubPol.
</p> </p>
<h3> <a name="4.2"> 4.2 </a> COAP </h3> <h3> <a name="4.2"> 4.2 </a> COAP </h2>
<p> <p>
The COAP form documents the checks and the resultant The COAP form documents the checks and the resultant
assurance results to meet the standard. assurance results to meet the standard.
@ -315,8 +326,8 @@ Additional information to be provided on form:
</li><li> </li><li>
Agreement with Agreement with
<b> <b>
CAcert Community Agreement. CAcert Community Agreement
</b> </b>.
Statement and initials box for organsation Statement and initials box for organsation
and also for OA. and also for OA.
</li><li> </li><li>
@ -336,15 +347,15 @@ ruling language (due to Arbitration requirements).
<p> <p>
Organisation Assurances are carried out by Organisation Assurances are carried out by
CAcert Inc under its Arbitration jurisdiction. CAcert Inc. under its Arbitration jurisdiction.
Actions carried out by OAs are under this regime. Actions carried out by OAs are under this regime.
</p> </p>
<ol type="a"><li> <ol type="a"><li>
The organisation has agreed to the terms of the The organisation has agreed to the terms of the
<b> <b>
CAcert Community Agreement, CAcert Community Agreement
</b> </b>,
</li><li> </li><li>
The organisation, the Organisation Assurers, CAcert and The organisation, the Organisation Assurers, CAcert and
other related parties are bound into CAcert's jurisdiction other related parties are bound into CAcert's jurisdiction
@ -354,8 +365,8 @@ Actions carried out by OAs are under this regime.
organisation reads, understands, intends and organisation reads, understands, intends and
agrees to the agrees to the
<b> <b>
CAcert Community Agreement. CAcert Community Agreement
</b> </b>.
This OA responsibility should be recorded on COAP This OA responsibility should be recorded on COAP
(statement and initials box). (statement and initials box).
</li></ol> </li></ol>
@ -391,4 +402,9 @@ Actions carried out by OAs are under this regime.
This means that the anglo law tradition of unregistered DBAs This means that the anglo law tradition of unregistered DBAs
is not accepted without further proof. is not accepted without further proof.
</li></ol> </li></ol>
<p>
<a href="http://validator.w3.org/check?uri=referer"><img src="http://www.w3.org/Icons/valid-xhtml11-blue" alt="Valid XHTML 1.1" height="31" width="88" style="border-style: none;" /> </a>
</p>
</body>
</html>

View file

@ -8,19 +8,34 @@
</title> </title>
</head> </head>
<body> <body>
<p>
<center>
<big>
<br><b>WARNING:</b><br>
The proper policy document is located<br>
<a href="http://www.cacert.org/policy/OrganisationAssurancePolicy.php">
on the CAcert website </a>.<br>
</big></b>
This document is a working draft to include<br>
future revisions only, and is currently<br>
only relevant for the [policy] group.<br>
</center>
</p>
<h1> <h1>
Organisation&nbsp;Assurance&nbsp;Policy Organisation&nbsp;Assurance&nbsp;Policy
</h1> </h1>
<p> <p>
<a href="../PolicyOnPolicy.html"><img src="../cacert-draft.png" alt="CAcert Draft" height="31" width="88" style="border-style: none;" /></a><br /> <a href="../PolicyOnPolicy.html"><img src="../cacert-draft.png" alt="CAcert Draft" height="31" width="88" style="border-style: none;" /> </a><br />
Author: Jens Paul<br /> Document: OAP COD11<br />
Creation date: 2007-09-18<br /> Author: Jens Paul<br />
Status: DRAFT 2007-09-18<br /> Creation date: 2007-09-18<br />
Changed: 2008-04-01 Teus Hagen policy list vote<br /> Status: POLICY 2007-09-18 <a href="http://wiki.cacert.org/wiki/TopMinutes-20070917">m20070918.x </a><br />
Next status: POLICY 2008<br /> Changed: 2008-04-01 Teus Hagen policy list vote; add advisors and board<br />
Next status: POLICY 2008-4-08<br />
<!-- $Id$ --> <!-- $Id$ -->
</p> </p>
<h2> 0. Preliminaries </h2> <h2> <a name="0">0. </a> Preliminaries </h2>
<p> <p>
This policy describes how Organisation Assurers ("OAs") This policy describes how Organisation Assurers ("OAs")
@ -34,7 +49,7 @@ This policy is not a Controlled document, for purposes of
Configuration Control Specification ("CCS"). Configuration Control Specification ("CCS").
</p> </p>
<h2> 1. Purpose </h2> <h2> <a name="1"> 1. </a> Purpose </h2>
<p> <p>
Organisations with assured status can issue certificates Organisations with assured status can issue certificates
@ -58,9 +73,9 @@ and as described in the CPS.
</li></ul> </li></ul>
<h2> 2. Roles and Structure </h2> <h2> <a name="2"> 2. </a> Roles and Structure </h2>
<h3> 2.1 Assurance Officer </h2> <h3> <a name="2.1"> 2.1 </a> Assurance Officer </h2>
<p> <p>
The Assurance Officer ("AO") The Assurance Officer ("AO")
@ -78,7 +93,7 @@ The OA is appointed by the Board.
Where the OA is failing the Board decides. Where the OA is failing the Board decides.
</p> </p>
<h3> 2.2 Organisation Assurers </h3> <h3> <a name="2.2"> 2.2 </a> Organisation Assurers </h3>
<p> <p>
</p> </p>
@ -132,7 +147,7 @@ Where the OA is failing the Board decides.
</ol> </ol>
<h3> 2.3 Assurance Advisors </h3> <h3> <a name="2.3"> 2.3 </a> Assurance Advisors </h3>
<p>In countries/states/provinces where no OA Assurers are <p>In countries/states/provinces where no OA Assurers are
operating for an OA Application (COAP) the OA operating for an OA Application (COAP) the OA
can be advised by an experienced local CAcert can be advised by an experienced local CAcert
@ -146,7 +161,7 @@ Where the OA is failing the Board decides.
</p> </p>
<h3> 2.4 Organisation Administrator </h3> <h3> <a name="2.4"> 2.4 </a> Organisation Administrator </h3>
<p> <p>
The Administrator within each Organisation ("O-Admin") The Administrator within each Organisation ("O-Admin")
@ -176,9 +191,9 @@ and the issuing of certificates.
</ol> </ol>
<h2> 3. Policies </h2> <h2> <a name="3"> 3. </a> Policies </h2>
<h3> 3.1 Policy </h3> <h3> <a name="3.1"> 3.1 </a> Policy </h3>
<p> <p>
There is one policy being this present document, There is one policy being this present document,
@ -192,7 +207,7 @@ and several subsidiary policies.
<li> Organisations are assured under an appropriate subsidiary policy. </li> <li> Organisations are assured under an appropriate subsidiary policy. </li>
</ol> </ol>
<h3> 3.2 Subsidiary Policies </h3> <h3> <a name="3.2"> 3.2 </a> Subsidiary Policies </h3>
<p> <p>
The nature of the Subsidiary Policies ("SubPols"): The nature of the Subsidiary Policies ("SubPols"):
@ -222,7 +237,7 @@ The nature of the Subsidiary Policies ("SubPols"):
policy approval process. policy approval process.
</li></ol> </li></ol>
<h3> 3.3 Freedom to Assemble </h3> <h3> <a name="3.3"> 3.3 </a> Freedom to Assemble </h3>
<p> <p>
Subsidiary Policies are open, accessible and free to enter. Subsidiary Policies are open, accessible and free to enter.
@ -255,9 +270,9 @@ Subsidiary Policies are open, accessible and free to enter.
</li></ol> </li></ol>
<h2> 4. Process </h2> <h2> <a name="4"> 4. </a> Process </h2>
<h3> 4.1 Standard of Organisation Assurance </h2> <h3> <a name="4.1"> 4.1 </a> Standard of Organisation Assurance </h3>
<p> <p>
The essential standard of Organisation Assurance is: The essential standard of Organisation Assurance is:
</p> </p>
@ -277,7 +292,9 @@ The essential standard of Organisation Assurance is:
requestor can sign on behalf of the organisation. requestor can sign on behalf of the organisation.
</li><li> </li><li>
the organisation has agreed to the terms of the the organisation has agreed to the terms of the
Registered User Agreement, <b>
CAcert Community Agreement
</b>,
and is therefore subject to Arbitration. and is therefore subject to Arbitration.
</li></ol> </li></ol>
@ -286,7 +303,7 @@ The essential standard of Organisation Assurance is:
are stated in the SubPol. are stated in the SubPol.
</p> </p>
<h3> 4.2 COAP </h2> <h3> <a name="4.2"> 4.2 </a> COAP </h2>
<p> <p>
The COAP form documents the checks and the resultant The COAP form documents the checks and the resultant
assurance results to meet the standard. assurance results to meet the standard.
@ -307,7 +324,10 @@ Additional information to be provided on form:
</li><li> </li><li>
domain name(s) domain name(s)
</li><li> </li><li>
Agreement with registered user agreement. Agreement with
<b>
CAcert Community Agreement
</b>.
Statement and initials box for organsation Statement and initials box for organsation
and also for OA. and also for OA.
</li><li> </li><li>
@ -323,7 +343,7 @@ and indication provided that the English is the
ruling language (due to Arbitration requirements). ruling language (due to Arbitration requirements).
</p> </p>
<h3> 4.3 Jurisdiction </h3> <h3> <a name="4.3"> 4.3 </a> Jurisdiction </h3>
<p> <p>
Organisation Assurances are carried out by Organisation Assurances are carried out by
@ -333,7 +353,9 @@ Actions carried out by OAs are under this regime.
<ol type="a"><li> <ol type="a"><li>
The organisation has agreed to the terms of the The organisation has agreed to the terms of the
Registered User Agreement, <b>
CAcert Community Agreement
</b>,
</li><li> </li><li>
The organisation, the Organisation Assurers, CAcert and The organisation, the Organisation Assurers, CAcert and
other related parties are bound into CAcert's jurisdiction other related parties are bound into CAcert's jurisdiction
@ -341,12 +363,15 @@ Actions carried out by OAs are under this regime.
</li><li> </li><li>
The OA is responsible for ensuring that the The OA is responsible for ensuring that the
organisation reads, understands, intends and organisation reads, understands, intends and
agrees to the registered user agreement. agrees to the
<b>
CAcert Community Agreement
</b>.
This OA responsibility should be recorded on COAP This OA responsibility should be recorded on COAP
(statement and initials box). (statement and initials box).
</li></ol> </li></ol>
<h2> 5. Exceptions </h2> <h2> <a name="5"> 5. </a> Exceptions </h2>
<ol type="a"><li> <ol type="a"><li>
@ -378,7 +403,7 @@ Actions carried out by OAs are under this regime.
is not accepted without further proof. is not accepted without further proof.
</li></ol> </li></ol>
<p> <p>
<a href="http://validator.w3.org/check?uri=referer"><img src="http://www.w3.org/Icons/valid-xhtml11-blue" alt="Valid XHTML 1.1" height="31" width="88" style="border-style: none;" /></a> <a href="http://validator.w3.org/check?uri=referer"><img src="http://www.w3.org/Icons/valid-xhtml11-blue" alt="Valid XHTML 1.1" height="31" width="88" style="border-style: none;" /> </a>
</p> </p>
</body> </body>
</html> </html>