Skip to Content.
Sympa Menu

cacert-policy - Re: Modification of SP

Subject: Policy-Discussion

List archive

Re: Modification of SP

Chronological Thread 
  • From: Mark Lipscombe <mark AT>
  • To: cacert-policy AT
  • Subject: Re: Modification of SP
  • Date: Thu, 01 Apr 2010 07:43:54 +1100
  • Authentication-results:; dkim=pass (1024-bit key) header.i= AT; dkim-asp=none

On 4/1/2010 6:42 AM, Pieter van Emmerik wrote:
Hi all,

As the board of CAcert consists of persons elected by members of CAcer
association I do not think they should have the requirement of a
background check except when they want to get access to critical systems
or sensitive information.
They form a political function and as such qualify because the have been
elected by association members.
Granting access to sensitive resources is not the same as having access
to those resources.
If board members want to have access to critical or sensitive data the
of course the also have to be background checked.
Granting access is more a administrative and/or political action.
If in that process no access to critical systems or sensitive data is
needed, a background check is unnecessary.
For comparison: in a company which handles secret information, the
people handling that secret information will need to have a government
issued security clearance, however the management that hires them do not
necessarily need to have a security clearance as the do not access
classified information themselves.

Pieter's message sums up my opinion also on the proposed change.

I would also add that the board has existing obligations to "do the right thing" that exceed any penalties that may be meted out other members of the community, including custodial penalties in the most extreme circumstances.


Archive powered by MHonArc 2.6.16.

Top of Page