Committee Meeting 2016-01-24

The meeting will take place at 10:00 UTC in the IRC channel #board-meeting on the CAcert IRC network.

Committee Members: feel free to add a business within the acceptance period or your question to the board below. Others: add a question to the questions section.

Agenda

  1. Preliminaries
    1. Chair opens the Committee Meeting
    2. Accept the minutes from the last meeting.

    3. Who is making minutes?
    4. Chair asks whether cacert-board-private maillist includes any items that need to be disclosed to Members.

    5. Chair asks whether cacert-board maillist includes any business items that aren't on the agenda yet.

    6. Chair introduces the URL of action items to the meeting, and asks for discussion.

  2. Businesses

    Acceptance of Businesses 48 Hours before beginning of Committee Meeting latest!

    1. Opinion survey about Re-Signing procedure
    2. Key persons list
    3. Get support working
    4. FOSDEM (stand in K building, bottom floor)
    5. EBCA (European Bridge CA - https://www.ebca.de/en/)

    6. Risk Analysis & physical inventory

    7. Business added by Your Name Comment: Replace "Business One" by Title of Business and add your Name

      • Additional Inputs Comment: Replace "Additional Inputs"by Description of Business, Description of Reason-Why/Purpose, Additional Comments, Additional Documents, Additional Links, if useful for other Committee Members to prepare for Committee Meeting.

    8. et cetera
  3. Question Time

    Questions from CAcert.org Community Members can be added until beginning of Committee Meeting! As well questions can be asked at "Question Time", without added Question here

    1. Question One added by Your Name Comment: Replace "Question One" by Your Question and add your Name

      • et cetera
  4. Closing
    1. Chair closes the Committee Meeting

Minutes

  1. Preliminaries
    • Attendees: Marcus Mängel, Reinhard Mutz, Stefan Thode, Felix Dörre

    • Chair opens the Committee Meeting
      • 10:03 #board-meeting: <@ReinhardM> I hereby open today's board meeting
      • accept minutes
        • 10:07 #board-meeting: <@ReinhardM> I move to accept the minutes from the last meeting
          Seconded by Felix and Stefan, Carried with 2 aye

          m20160205.1

      • Who is making minutes?
        • Marcus is taking the minutes
      • Chair asks whether cacert-board-private mailing list includes any items that need to be disclosed to Members.
        • no items to disclosed
    • Chair asks whether cacert-board mailing list includes any business items that aren't on the agenda yet.

      • no items to be added
    • Chair introduces the URL of action items to the meeting, and asks for discussion.

      • 10:15 #board-meeting: <@INOPIAE> As they have not yet been updated there is nothing to be done here.
  2. Businesses
    1. Opinion survey about Re-Signing procedure
      • The invitation mail for the survey was sent out on 2016-01-21 to 72 members. The survey will end on 2016-01-28 00:00 UTC

        The result will be available after 2016-01-28 00:00 UTC here: https://cacert.eu/survey/audit/.

    2. Key persons list
      • Secretary had to collect the information again as the former board did not hand over the list they had composed. It will be send out within one week
    3. Get support working
      • There has been a second training session with the supporter in question which covered the topics given by the arbitrator. As soon as the report is written the next steps to put the supporter back to work will be started.
    4. FOSDEM (stand in K building, bottom floor)
      • The stand of CAcert was accepted by the FOSDEM and will be located in K building on the bottom floor left to the lecture room.
    5. EBCA (European Bridge CA - https://www.ebca.de/en/)

      • Board were able to meet with the EBCA following an invitation that was issued several month ago. Board demonstrated how CAcert works with the ATE - presentation
    6. Risk Analysis & physical inventory

      • Board will start a new risk analysis which has been requested about 17? month ago by the internal auditor. Board first will identify the issues to be covered and prepare a list for the next board meeting. Currently the issues were mentioned: Software, Hardware (dedicated inventory list of hardware located at BIT), staffing of teams, legal requirements
  3. Question Time
    • 11:01 #board-meeting: <@ReinhardM> next Topic 3. Question Time 
      11:02 #board-meeting: <@ReinhardM> open the channel please
      11:02 -!- mode/#board-meeting [-m] by INOPIAE
      11:02 #board-meeting: < katzazi> who has access to the file system where the survey is running?
      11:04 #board-meeting: < katzazi> who will be able to study the logs of the changes on that file system?
      11:05 #board-meeting: < katzazi> what do you do about the fact that nearly 5% of the original tokens for the survey were made public because of people were replying to the invitation mail?
      11:07 #board-meeting: <@felix> To 1st Question: see (as you already noticed) https://wiki.cacert.org/SystemAdministration/Systems/Web for the admins of that system.
      11:07 #board-meeting: < katzazi> that does not give us information about who has access to which parts
      11:08 #board-meeting: <@felix> To 2nd Question: to our knowledge there is no logging on file system level done on that machine. --> no one will be able to study the logs.
      11:08 #board-meeting: < katzazi> so we will not be able to check what files were there prior to the survey
      11:08 #board-meeting: < katzazi> or if someone crated files during the survey
      11:09 #board-meeting: < katzazi> while about 7 people may have access?
      11:11 #board-meeting: < katzazi> if we compare our confirmation-tokens even partly this removes the anonymity is this intended?
      11:12 #board-meeting: < katzazi> who wrote the code for the survey?
      11:12 #board-meeting: < katzazi> who started the survey? is there a logging about this?
      11:13 #board-meeting: < katzazi> can you give some update about the investigation that you claim to have started?
      11:15 #board-meeting: < katzazi> what will board do if there are 5% "no" in the survey, or 10% or even more?
      11:15 #board-meeting: < katzazi> what will board do if the survey results in "yes"?
      11:20 -!- mode/#board-meeting [+m] by INOPIAE
      11:21 #board-meeting: <@ReinhardM> AS I wrote already in an email the investigation committee will start soon. there are 2 assurers nominated for this task; a third person is contacted.
      11:21 #board-meeting: <@ReinhardM> The committee will start soon.
      11:21 #board-meeting: <@ReinhardM> All other questions could be answered by yourself, because you got all informations as everybody else.
      11:22 #board-meeting: <@ReinhardM> See the git page for the code, see the wiki and the emails
  4. Date of next meeting
    • sunday 2016-02-07 10 UTC

transscript of meeting


Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2016-01-24 (last edited 2016-02-10 22:07:16 by BenediktHeintel)