diff --git a/CertificationPracticeStatement.html b/CertificationPracticeStatement.html index 4d0ea7e..a68c2e8 100755 --- a/CertificationPracticeStatement.html +++ b/CertificationPracticeStatement.html @@ -1,4 +1,6 @@ - + +
@@ -83,7 +85,7 @@ a:hover { Suggested additions in BLUE, strikes in blue.General | @@ -728,7 +730,7 @@ and will be submitted to vendors via the (Top-level) Root.
---|
- | |||||||||||
Class of Root | @@ -745,12 +747,12 @@ and will be submitted to vendors via the (Top-level) Root.Anon | Name | Name+Anon | -||||||||
Root |
- | | |
+ |
|
|
|
@@ -759,7 +761,7 @@ and will be submitted to vendors via the (Top-level) Root.
||||
SubRoot |
|
- | |
|
|
|
@@ -767,8 +769,8 @@ and will be submitted to vendors via the (Top-level) Root.
|||||
SubRoot |
- | | |
+ |
|
|
|
@@ -776,8 +778,8 @@ and will be submitted to vendors via the (Top-level) Root.
||||
SubRoot |
- | | |
+ |
|
|
|
@@ -785,14 +787,14 @@ and will be submitted to vendors via the (Top-level) Root.
||||
Expiry of Certificates | -|||||||||||
Types | -(Inclusive to the left.) |
- | |||||||||
Class of Root | @@ -832,7 +834,7 @@ look at the CPS to figure it out.Named | Anonymous | Named | -||||||
1 |
@@ -844,21 +846,21 @@ look at the CPS to figure it out.
|||||||||
3 |
- | | |
+ |
|
|
- Assured Members only. Intended for Reliance. |
+ Intended for Reliance. |
|
Expiry of Certificates | -|||||||||
Types available | -
Assurer. @@ -1029,14 +1031,14 @@ As per above. Root Distribution License (COD14).
-Reliance. +Reliance. An industry term referring to the act of making a decision, including taking a risk, which decision is in part or in whole informed or on the basis of the contents of a certificate.
-Relying Party. +Relying Party. An industry term refering to someone who relies (that is, makes decisions or takes risks) in part or in whole on a certificate. @@ -1050,19 +1052,19 @@ As per above. are not used here.
-Verification. +Verification. An industry term referring to the act of checking and controlling the accuracy and utility of a single claim.
-Validation. +Validation. An industry term referring to the process of inspecting and verifying the information and subsidiary claims behind a claim.
-Usage. +Usage. The event of allowing a certificate to participate in a protocol, as decided and facilitated by a user's software. Generally, Usage does not require significant input, if any, @@ -1091,7 +1093,7 @@ As per above. The audit criteria that controls this CPS. The CCS is documented in COD2, itself a controlled document under CCS.
-+
CAcert Official Document (COD). Controlled Documents that are part of the CCS. @@ -1316,7 +1318,7 @@ See Certificates containing International Domain Names, being those containing a ACE prefix (RFC3490 Section 5), will only be issued to domains satisfying one or more -of the following conditions: +of the following conditions:
Email address containing International Domain Names in the domain portion of the email address will also be required to satisfy one of the above conditions.
-The following is a list of accepted TLD Registrars: +The following is a list of accepted TLD Registrars:
.lt | -Registry | -Policy (character list) | +Registry | +Policy (character list) |
Policy (character list) |
This criteria will apply to the email address and server host name fields for all certificate types. @@ -1784,7 +1786,7 @@ process or file a dispute.
-The general life-cycle for a new certificate for an Individual Member is: +The general life-cycle for a new certificate for an Individual Member is:
(Some steps are not applicable, such as anonymous certificates.) @@ -1827,7 +1829,7 @@ On issuance of certificates, Members become Subscribers. The Member can claim ownership or authorised control of a domain or email address on the online system. This is a necessary step towards issuing a certificate. -There are these controls: +There are these controls:
Email-Ping. Email addresses are verified by means of an -Email-Ping test: +Email-Ping test:
-Notes. +Notes.
-For an individual client certificate, the following is required. +For an individual client certificate, the following is required.
-For a server certificate, the following is required: +For a server certificate, the following is required:
Verified Name | @@ -2385,7 +2387,7 @@ See Table 4.5.2.
- | ||||||||
Class of Root | @@ -2397,7 +2399,7 @@ See Table 4.5.2.
Do not rely. Relying party must use other methods to check. |
- + |
Do not rely.
Although the named Member has been Assured by CAcert,
reliance is not defined with Class 1 root. @@ -2408,7 +2410,7 @@ See Table 4.5.2. | |||||
3 |
- + | Do not rely on the Name (being available). The Member has been Assured by CAcert, but reliance is undefined. | @@ -2670,13 +2672,13 @@ No stipulation.Role | Policy | Comments | |||
Assurer | -COD13 | +COD13 | Passes Challenge, Assured to 100 points. | @@ -2909,7 +2911,7 @@ Refer to Security Policy 5, 6 (§1.4 for limitations to service.) - +