cacert
/
cacert-policies
8
1
Fork 0
Code Issues 3 Pull Requests 1 Packages Projects Releases Wiki Activity

updates courtesy Iang

Browse Source 
git-svn-id: http://svn.cacert.org/CAcert/Policies@780 14b1bab8-4ef6-0310-b690-991c95c89dfd
pull/1/head
Sam Johnston 17 years ago
parent 0b9be4071e
commit b8fe70c1fe
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File

11
TrustedThirdParty.html
Unescape Escape View File

@ -23,16 +23,16 @@
0. Preliminaries
</h2>
<p>
This CAcert sub-policy extends the Assurance Policy ("AP") by specifying how the CAcert Assurance Program ("CAP") is to be remotely conducted for entities where insufficient local assurer(s) are available. An existing local CAcert Assurer shall be assigned to conduct the assurance to their satisfaction using TWO Trusted Third Parties ("TTP"s) under the supervision of the Assurance Officer ("AO").
This CAcert sub-policy extends the Assurance Policy ("AP") by specifying how the CAcert Assurance Program ("CAP") is to be remotely conducted for members where insufficient local assurer(s) are available. An existing local CAcert Assurer shall be assigned to conduct the assurance to their satisfaction using TWO Trusted Third Parties ("TTP"s) under the supervision of the Assurance Officer ("AO").
</p>
<p>
Successful completion of the Trusted Third Party process shall result in the Assuree achieving the status of Assurer (eg the allocation of sufficient points to reach 100).
Successful completion of the Trusted Third Party process shall result in the Assuree achieving the status of Assurer (eg the allocation of sufficient points to reach 100). However this status should not be considered permanent as points may expire so they should seek assurance by the usual means as soon as practicable.
</p>
<h2>
1. Scope
</h2>
<p>
This sub-policy is restricted to entities where insufficient local assurer(s) are available to reach Assurer status by the usual means within a 30 day period.
This sub-policy is restricted to members where insufficient local assurer(s) are available to reach Assurer status by the usual means within a 30 day period.
</p>
<h2>
2. Requirements
@ -61,6 +61,9 @@
<li>
<strong>Notary Public</strong> authorised to authenticate documents in their jurisdiction
</li>
<li>
<strong>Other</strong> trusted local public figure as approved by AO (limited to ONE of the TWO TTPs)
</li>
</ol>
</li>
<li>MUST retain the TTP form for at least 60 days and respond to CAcert enquiries in a timely fashion
@ -77,6 +80,8 @@
<ol style="list-style-type: lower-alpha;">
<li>MUST be satisfied as to the identity and competency of the TTP, as though they were to be conducting the assurance themselves
</li>
<li>SHOULD be the most senior assurer available
</li>
<li>SHOULD have experience with the TTP program, unless no experienced local Assurers are available within a 30 day period
</li>
<li>SHOULD recommend TTPs to the Assuree where possible so as to improve security

Write Preview
Loading…
Cancel
Save