Skip to Content.
Sympa Menu

cacert-policy - [CAcert-Policy] Policy RFC ( Was: [Fwd: OFF-LIST! Re: [CAcert-Support] [website form email]: Trusted Third Party])

Subject: Policy-Discussion

List archive

[CAcert-Policy] Policy RFC ( Was: [Fwd: OFF-LIST! Re: [CAcert-Support] [website form email]: Trusted Third Party])

Chronological Thread 
  • From: Evaldo Gardenali <evaldo AT>
  • To: CAcert Policy-Discussion <cacert-policy AT>
  • Subject: [CAcert-Policy] Policy RFC ( Was: [Fwd: OFF-LIST! Re: [CAcert-Support] [website form email]: Trusted Third Party])
  • Date: Thu, 26 May 2005 01:21:31 -0300
  • List-archive: <>
  • List-id: Policy-Discussion <>

I just thought in a nice addition to our assurance policy, and submit it as a request for comments here :)

In case CAcert assures a "trusted" organization, we could establish an "assurance agreement" or something like that, so that these institution can offer easy access to CAcert assurances to the public at large.

It is worthy to note that most banks have at least two managers per site, meaning that TTP *is* a viable option, but maybe too complicated if it is going to happen "en mass". I was thinking more like a "WoT" form, without requiring them to mail documents to CAcert, but under special conditions, giving 150 points, for example, directly.

Of course, an ideal way would be to establish an "assurance agreement" contract, because we are delegating "super-assurer" status to an organization in a long-term basis.

So, as an RFC, we need comments, I think :)



Duane wrote:
CAcert Website wrote:

My company has just joined CAcert and am attempting to document who we are.  
We are Oak Hill Banks, a regional bank that covers the southern part of the 
state of Ohio in the US.  I have sent emails to a few Assurers to establish 
who we are, but wonder if there is some way that we can establish our 
identity directly to CAcert.  We would be able to validate other users in a 
large area of this state as we have identification measures that are not 
available to other people.  Please advise.

Since you are a bank it's kind of very easy, we have a trusted third
party system to have ID information checked/verified and sent into us,
and one of the requirements allows bank managers to do the ID checks.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Archive powered by MHonArc 2.6.16.

Top of Page