Skip to Content.
Sympa Menu

cacert-policy - how background checks work

Subject: Policy-Discussion

List archive

how background checks work

Chronological Thread 
  • From: Ian G <iang AT>
  • To: cacert-policy AT
  • Subject: how background checks work
  • Date: Wed, 31 Mar 2010 10:08:59 +1100
  • Authentication-results:; dkim=pass (1024-bit key) header.i= AT; dkim-asp=none

On 31/03/2010 04:01, Andreas Bürki wrote:
Interesting discussion about background check.

What I little Swiss guy personally miss, but maybe you can point my nose
to the issue:
*   Where is the precise description of the procedure to run ABC?
        * As it seems quite important, it would deserve a detailed and
clear description. Or do I have to search all over svn, wiki and collect
bits and pieces?

Security Policy 9.1.4 points to
Security Manual 9.1.4 points to
the Procedure.

*   Where I can find ABC checklist or better ABC questionnaire for

You can't. Arbitrators have decided to keep that internal. (refer to Arbitration and/or to audit.)

        * In order to guarantee same quality for every candidate

Yes, they have that issue.  (refer...)

*   Where are completed ABC - personal, critical data - checks stored /
protected and who has access to such?

Arbitrator responsibility is to deliver a ruling. So same as for the ruling. Have a look...

        * I guess for QMS and future audit, this is relevant, to proof
evidence of ABC's.
*   Who is responsible for storage of completed ABC- personal, critical
data - checks?


        * In case of data loss or stolen data, who will be the one to
blame and hang?

The Arbitrator, as you know, is responsible for all disputes. Probably a different one this time :)

And please, this are only 4 little questions, thus no long stories,
needed . But clear and understandable answers appreciated.

Hopefully you can help a naive person like me.

Hugi, that's a little bit fantastical, what you are asking, and while nice and feel-goodey, it's a fairy tale. We don't do pre-packaged learning like a dozen eggs or vitamin pills. We gave up teaching by rote in the 19th century. In order to understand these complicated systems, you do have to somewhat immerse yourself in them.

We see this all around us here in CAcert. People who think they should be able to make an easy decision find that there are many complicated parts. It does take a while. Immersing yourself in systems is good for the soul, and once you understand the process, and have participated in it a few times, it's actually possibly to constructively criticise them, and help CAcert develop with positive contribitions :)

Well, enough of long rants ... good luck with your 6 little answers ;-)


Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Archive powered by MHonArc 2.6.16.

Top of Page