Subject: Policy-Discussion
List archive
- From: Daniel Black <daniel AT cacert.org>
- To: cacert-policy AT lists.cacert.org
- Subject: Re: SP holes/ questions - root key managment
- Date: Sat, 27 Mar 2010 11:42:20 +1100
- Authentication-results: lists.cacert.org; dkim=pass (1024-bit key) header.i= AT cacert.org; dkim-asp=none
- Organization: CAcert
I think that bugged me while doing root key escrow procedures 9.2.3.
9.2.3. Recovery
Recovery must only be conducted under Arbitrator authority.
I don't know why this is here. There will be procedures for subroot
generation
so I'm not sure what arbitrator control is required. Really only board
control
is required to recover as it follows on from 9.2.4
replace to "Recovery must only be conducted under board control"
9.2.4 Revocation is oddly enough blank.
My suggestion here is as we the rest of root processes are under board
control
this should be also.
"Revocation of root and subroots must only be performed under board control"
Arbitration isn't required. It will be a decision of the board based on
evidence and it isn't an abnormal procedures - only hopefully a very
infrequent only.
--
Daniel Black
CAcert
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
- Re: SP => POLICY?, (continued)
- Re: SP => POLICY?, Dieter Hennig, 03/23/2010
- Re: SP => POLICY?, Ian G, 03/23/2010
- Re: SP => POLICY?, Dieter Hennig, 03/23/2010
- Re: SP => POLICY?, Ian G, 03/24/2010
- Re: SP => POLICY?, Dieter Hennig, 03/24/2010
- Re: SP => POLICY?, Ian G, 03/24/2010
- Re: SP => POLICY?, Dieter Hennig, 03/23/2010
- Re: SP => POLICY?, Ian G, 03/23/2010
- RE: SP => POLICY?, Ernestine, 03/23/2010
- Re: SP => POLICY?, Ian G, 03/24/2010
- Re: SP => POLICY?, Michael Tänzer, 03/27/2010
- Re: SP => POLICY?, Ian G, 03/27/2010
- Re: SP review questions comments and improvements, Daniel Black, 03/25/2010
- Re: SP holes/ questions - root key managment, Daniel Black, 03/27/2010
- Re: SP holes/ questions - root key managment, Ian G, 03/27/2010
- Re: SP holes/ questions - root key managment - board control, Daniel Black, 03/27/2010
- Re: SP holes/ questions - root key managment, Ian G, 03/27/2010
- Re: SP holes/ questions - root key managment, Daniel Black, 03/27/2010
- Re: SP => POLICY?, Daniel Black, 03/25/2010
- Re: SP => POLICY?, Ian G, 03/26/2010
- Re: SP => POLICY?, Daniel Black, 03/26/2010
- Re: SP => POLICY?, Ian G, 03/27/2010
- Re: SP => POLICY?, Mario Lipinski, 03/27/2010
- Re: SP => POLICY?, Ian G, 03/27/2010
- Re: SP => POLICY?, Mark Lipscombe, 03/27/2010
- Whether the Association is under PoP, Ian G, 03/27/2010
- Re: SP => POLICY?, Mark Lipscombe, 03/27/2010
- Re: SP => POLICY?, Ian G, 03/27/2010
- Re: SP => POLICY?, Mario Lipinski, 03/27/2010
- Re: SP => POLICY?, Ian G, 03/27/2010
- Re: SP => POLICY?, Daniel Black, 03/26/2010
- Re: SP => POLICY?, Dieter Hennig, 03/23/2010
Archive powered by MHonArc 2.6.16.