|
|
|
|
@ -41,7 +41,7 @@ Next status: POLICY 2008<br />
|
|
|
|
|
This policy describes how Organisation Assurers ("OAs")
|
|
|
|
|
conduct Assurances on Organisations.
|
|
|
|
|
It fits within the overall web-of-trust
|
|
|
|
|
or Assurance process of Cacert.
|
|
|
|
|
or Assurance process of CAcert.
|
|
|
|
|
</p>
|
|
|
|
|
|
|
|
|
|
<p>
|
|
|
|
|
@ -69,22 +69,22 @@ and as described in the CPS.
|
|
|
|
|
to this policy.
|
|
|
|
|
</li><li>
|
|
|
|
|
The organisation is within the jurisdiction
|
|
|
|
|
and can be taken to Arbitration.
|
|
|
|
|
and can be taken to CAcert Arbitration.
|
|
|
|
|
</li></ul>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
<h2> <a name="2"> 2. </a> Roles and Structure </h2>
|
|
|
|
|
|
|
|
|
|
<h3> <a name="2.1"> 2.1 </a> Assurance Officer </h2>
|
|
|
|
|
<h3> <a name="2.1"> 2.1 </a> Assurance Officer </h3>
|
|
|
|
|
|
|
|
|
|
<p>
|
|
|
|
|
The Assurance Officer ("AO")
|
|
|
|
|
manages this policy and reports to the CAcert Inc. Committee (Board).
|
|
|
|
|
manages this policy and reports to the CAcert Inc. Committee ("Board").
|
|
|
|
|
</p>
|
|
|
|
|
|
|
|
|
|
<p>
|
|
|
|
|
The AO manages all OAs and is responsible for process,
|
|
|
|
|
the CAcert Organisation Assurance Programme form ("COAP"),
|
|
|
|
|
the CAcert Organisation Assurance Programme ("COAP") form,
|
|
|
|
|
OA training and testing, manuals, quality control.
|
|
|
|
|
In these responsibilities, other Officers will assist.
|
|
|
|
|
</p>
|
|
|
|
|
@ -147,7 +147,7 @@ Where the OA is failing the Board decides.
|
|
|
|
|
|
|
|
|
|
</ol>
|
|
|
|
|
|
|
|
|
|
<h3> <a name="2.3"> 2.3 </a> Assurance Advisors </h3>
|
|
|
|
|
<h3> <a name="2.3"> 2.3 </a> Organisation Assurance Advisor ("OAA") </h3>
|
|
|
|
|
<p>In countries/states/provinces where no OA Assurers are
|
|
|
|
|
operating for an OA Application (COAP) the OA
|
|
|
|
|
can be advised by an experienced local CAcert
|
|
|
|
|
@ -226,7 +226,7 @@ The nature of the Subsidiary Policies ("SubPols"):
|
|
|
|
|
</li><li>
|
|
|
|
|
For OAs,
|
|
|
|
|
SubPol specifies the <i>tests of local knowledge</i>
|
|
|
|
|
including the local organisational forms.
|
|
|
|
|
including the local organisation assurance COAP forms.
|
|
|
|
|
</li><li>
|
|
|
|
|
For assurances,
|
|
|
|
|
SubPol specifies the <i>local documentation forms</i>
|
|
|
|
|
@ -303,7 +303,7 @@ The essential standard of Organisation Assurance is:
|
|
|
|
|
are stated in the SubPol.
|
|
|
|
|
</p>
|
|
|
|
|
|
|
|
|
|
<h3> <a name="4.2"> 4.2 </a> COAP </h2>
|
|
|
|
|
<h3> <a name="4.2"> 4.2 </a> COAP </h3>
|
|
|
|
|
<p>
|
|
|
|
|
The COAP form documents the checks and the resultant
|
|
|
|
|
assurance results to meet the standard.
|
|
|
|
|
@ -320,15 +320,13 @@ Additional information to be provided on form:
|
|
|
|
|
<li>additional contact information (as required by SubPol).</li>
|
|
|
|
|
</ol>
|
|
|
|
|
</li><li>
|
|
|
|
|
administrator account names (1 or more)
|
|
|
|
|
administrator account name(s) (1 or more)
|
|
|
|
|
</li><li>
|
|
|
|
|
domain name(s)
|
|
|
|
|
</li><li>
|
|
|
|
|
Agreement with
|
|
|
|
|
<b>
|
|
|
|
|
CAcert Community Agreement
|
|
|
|
|
</b>.
|
|
|
|
|
Statement and initials box for organsation
|
|
|
|
|
<b>CAcert Community Agreement</b>.
|
|
|
|
|
Statement and initials box for organisation
|
|
|
|
|
and also for OA.
|
|
|
|
|
</li><li>
|
|
|
|
|
Date of completion of Assurance.
|
|
|
|
|
@ -353,9 +351,7 @@ Actions carried out by OAs are under this regime.
|
|
|
|
|
|
|
|
|
|
<ol type="a"><li>
|
|
|
|
|
The organisation has agreed to the terms of the
|
|
|
|
|
<b>
|
|
|
|
|
CAcert Community Agreement
|
|
|
|
|
</b>,
|
|
|
|
|
<b>CAcert Community Agreement</b>.
|
|
|
|
|
</li><li>
|
|
|
|
|
The organisation, the Organisation Assurers, CAcert and
|
|
|
|
|
other related parties are bound into CAcert's jurisdiction
|
|
|
|
|
@ -364,9 +360,7 @@ Actions carried out by OAs are under this regime.
|
|
|
|
|
The OA is responsible for ensuring that the
|
|
|
|
|
organisation reads, understands, intends and
|
|
|
|
|
agrees to the
|
|
|
|
|
<b>
|
|
|
|
|
CAcert Community Agreement
|
|
|
|
|
</b>.
|
|
|
|
|
<b>CAcert Community Agreement</b>.
|
|
|
|
|
This OA responsibility should be recorded on COAP
|
|
|
|
|
(statement and initials box).
|
|
|
|
|
</li></ol>
|
|
|
|
|
@ -401,10 +395,9 @@ Actions carried out by OAs are under this regime.
|
|
|
|
|
E.g., registration as DBA or holding of registered trade mark.
|
|
|
|
|
This means that the anglo law tradition of unregistered DBAs
|
|
|
|
|
is not accepted without further proof.
|
|
|
|
|
</li></ol>
|
|
|
|
|
<p>
|
|
|
|
|
<a href="http://validator.w3.org/check?uri=referer"><img src="http://www.w3.org/Icons/valid-xhtml11-blue" alt="Valid XHTML 1.1" height="31" width="88" style="border-style: none;" /> </a>
|
|
|
|
|
</p>
|
|
|
|
|
</li></ol>
|
|
|
|
|
<p><a href="http://validator.w3.org/check?uri=referer"><img src="http://www.w3.org/Icons/valid-xhtml11-blue" alt="Valid XHTML 1.1" height="31" width="88" style="border-style: none;" /> </a>
|
|
|
|
|
</p>
|
|
|
|
|
</body>
|
|
|
|
|
</html>
|
|
|
|
|
|
|
|
|
|
|
Teus Hagen
17 years ago