From 8bfd83f99f92f3c5080cdbc5285d2b5738241bb6 Mon Sep 17 00:00:00 2001 From: Ian Grigg Date: Thu, 19 Jun 2008 21:40:23 +0000 Subject: [PATCH] Fixed up comments on Name. Moved the "policy" out of the terms definition. Dropped the (Name) in point 3 because the point is that the Member can be traced with the *certificate* which also includes nameless certs. This means that any certificate can be relied upon (although what reliance on anonymous certs means is a question for a future arbitrator). Fixed spelling mistake with 'secondary'. git-svn-id: http://svn.cacert.org/CAcert/Policies@862 14b1bab8-4ef6-0310-b690-991c95c89dfd --- AssurancePolicy.html | 27 ++++++++++++++++----------- 1 file changed, 16 insertions(+), 11 deletions(-) diff --git a/AssurancePolicy.html b/AssurancePolicy.html index 3960481..2e0148f 100644 --- a/AssurancePolicy.html +++ b/AssurancePolicy.html @@ -13,9 +13,9 @@

CAcert Policy Status
- Author: Ian Grigg
+ Editor: iang ?
Creation date: 2008-05-30
- Status: WIP 2008-05-30
+ Status: WIP 2008-06-19
Next status: DRAFT June 2008

@@ -35,9 +35,9 @@ The strength of these activities is based on the strength of the assurance.
Member
An individual who has agreed to the CAcert Community agreement and has created successfully a CAcert (web)account on http://www.cacert.org.
Name
-
A Name is the full name (first name(s), family name(s), name extensions,abreviation of name(s), etc.) of an individual. The Name is technically spoken a string exactly taken from a governemental issued photo ID. Transliteration of characters to a character table defined by CAcert is permitted. +
A Name is the full name (first name(s), family name(s), name extensions,abreviation of name(s), etc.) of an individual.
-
Secundary Distinguished Feature (DoB)
+
Secondary Distinguishing Feature (DoB)
A Name for an individual is discrimated from similar full names by a secondary distinguished feature, as recorded on the on-line CAcert (web) account. Currently this is the date of birth (DoB) of the individual.
@@ -85,11 +85,11 @@ In other words, the person is a member of the CAcert community, as defined by th
  • The Member has a (login) (web)Account with CAcert's on-line registration and service system.
    • -
  • The Member (Name) can be determined from any certificate issued by the Account. +
  • The Member can be determined from any certificate issued by the Account.
  • The Member is bound into CAcert's Arbitration (as defined by the CCA).
    • -
  • Some personal details of the Member (Name(s), primary and other listed email address(es), secundary distinguished feature (eg DoB)) are known to CAcert. +
  • Some personal details of the Member (Name(s), primary and other listed email address(es), Secondary Distinguishing Feature (e.g., DoB)) are known to CAcert.

    • The confidence level of the Assurance Statement is expressed by the Assurance Points. @@ -121,6 +121,11 @@ The general standard is that the individual name of the Member is as written on For more details see the PolicyDrafts/PolicyOnNames, where the discussion is carried on. This page will be copied into here when the discussion is complete.

    + +

    + The technical form of a Name is a string of characters. It should be exactly copied from a governemental-issued photo ID. Transliteration of characters to a character table defined by Assurance Officer is permitted. +

    + Multiple Names
    A Member may have multiple individual Names. @@ -214,7 +219,7 @@ The process consists of:
  • Recording of essential details on CAP form (below);
    • -
  • Examination of Identity documents by Assurer and verification of recorded details (Name(s) and secundary distinguishing feature, eg DoB); +
  • Examination of Identity documents by Assurer and verification of recorded details (Name(s) and Secondary Distinguishing Feature, e.g., DoB);
  • Allocation of Assurance Points by Assurer;
    • @@ -261,11 +266,11 @@ The allocation of the maximum means that the Assurer is 100% confident in the in
  • The Assurance Statement is confirmed.

    • -Any lesser confidence should give less Assurance Points for a Name. If the Assurer has no confidence in the information presented, then zero Assurance Points may be allocated by the Assurer. +Any lesser confidence should result in less Assurance Points for a Name. If the Assurer has no confidence in the information presented, then zero Assurance Points may be allocated by the Assurer. For example, this may happen if the identity documents are totally unfamiliar to the Assurer. The number of Assurance Points from zero to maximum is guided by the Assurance Handbook and the judgement of the Assurer.

    -Multiple Names (fields for reliance in certificates) should be allocated separately in a single Assurance. +Multiple Names should be allocated separately in a single Assurance. That is, the Assurer may allocate the maximum to one Name, half that amount to another Name, and zero to a third Name.

    A (new) Member who is not an Assurer may award an Assurer in a reciprocal process a maximum of 2 Assurance Points, according to his judgement. @@ -326,7 +331,7 @@ The CAcert Assurance Programme (CAP) form requests the following details of each

  • Primary email address, as recorded in the on-line account;
    • -
  • Secondary distinguishing feature, as recorded in the on-line account (normally, date of birth); +
  • Secondary Distinguishing Feature, as recorded in the on-line account (normally, date of birth);
  • Statement of agreement with the CAcert Community Agreement (CCA);
    • @@ -343,7 +348,7 @@ The CAP form requests the following details of the Assurer:
  • Statement of Assurance;
  • -Optional: If the Assurance is reciprocal, then the Assurer's email address and secondary distinguishing feature are required as well. +Optional: If the Assurance is reciprocal, then the Assurer's email address and Secondary Distinguishing Feature are required as well.
  • Date, location of Assurance and signature of Assurer.