• Brain
• CAcertInc
• Committee
• MeetingAgendasAndMinutes
• 2016-10-01

• To Brain CAcert Inc. - CAcert.org Members Association - To Brain CAcert Inc. Committee Meeting Agendas & Minutes - Board's Project Overview - Current Action Items - last meeting - next meeting

---

Committee Meeting 2016-10-01

The meeting will take place at 11:00:00 UTC in the IRC channel #board-meeting on the CAcert IRC network.

Feel free to add a business item within the acceptance period of 48 hours or your question to the board below. Non-committee Members: Committee may choose to convert any business proposed as a question in the questions section.

Premeeting

1. Minutes author prepares the minutes from the last meeting

2. Minutes author prepares the actions. All action owners to update.

   • actions

     who

     status

update form last meeting...

1. Minutes author puts motion m2016xxxx.y to accept the minutes

Agenda

1. Preliminaries
   1. Chair opens the Committee Meeting
   2. Accept the minutes from the last meetings:
   3. Who is making minutes?

   4. Chair asks whether cacert-board-private maillist includes any items that need to be disclosed to Members.

   5. Chair points actions from last meeting to the meeting, and asks for discussion.

2. Businesses

   Acceptance of Businesses 48 Hours before beginning of Committee Meeting latest!

   1. Paypal payments by dirk

   2. secure-u invoice by dirk

   3. Arbitration Case a20131128.1 by Gero

      1. How are double assurances in past are dealt with?

   4. Arbitration Case a20140316.1 by Eva

   5. RA-Audit and ATE by board

   6. ABCs by Eva/dirk

   7. AGM preparation by dirk

   8. Old board by dirk

      1. Report to be created

   9. Status of Move of CAcert Inc. Intended to be continued over to each meeting - please keep as last item!

   10. Data protection officer (added as late business)
   11. Hand-over request (added as late business)

   12. Business added by Your Name Comment: Replace "Business One" by Title of Business and add your Name

       • Additional Inputs Comment: Replace "Additional Inputs"by Description of Business, Description of Reason-Why/Purpose, Additional Comments, Additional Documents, Additional Links, if useful for other Committee Members to prepare for Committee Meeting.

   13. et cetera
3. Question Time

   Questions from CAcert.org Community Members can be added until beginning of Committee Meeting! As well questions can be asked at "Question Time", without added Question here

   1. Question One added by Your Name Comment: Replace "Question One" by Your Question and add your Name

      • et cetera
4. Closing
   1. Agree on date of the next Committee Meeting
   2. Chair closes the Committee Meeting

Minutes

1.1 Ian opened the meeting as chair on 11:02 UTC.

Present: Piers, Ian, Dirk, Gero

1.3 Gero takes minutes for the current meeting.

1.4 Items to be disclosed from board-private

• Support requested a permissions review.

2.1 Paypal payments

The web pages ask for a payment about 15$ for a password reset. In fact this is recommended to compensate for the necessary work, but not required, so the pages should state this instead. A change is prepared as previously decided.

2.2 secure-u invoice

The past invoice is paid. Currency conversions have been clarified. The next invoice is in preparation with the goal to have that regularly.

2.3 Arbitration Case a20131128.1

Introduction: There are ~200 pairs of persons with double assurances in the past. There are indications that they are from a time before the AP was in place, which forbids this. In contrary, it could have been a practise to enter super assurances. In addition, the system could have been used for testing, as CAcert didn't have a dedicated testing system at that time.

Currently board owns the role of AO.

No consensus how to deal with that could be reached. Statements tend to accept double assurances which happened before AP.

Open questions are:

• How many assurances happened after AP?
• Are double assurances desirable to refresh aged assurances (probably yes,
  • but currently not possible)?
• How to coint points in case of double assurances?

2.4 Arbitration Case a20140316.1

The software has bugs which don't allow support to see all necessary data to handle cases where investigations about data marked as deleted are necessary, e. g. for deletion of accounts.

Motions:

• Resolved, that the board considers the bugs filed referred to in the case a20140316.1 are sufficient to the underlying needs, that the case is misfiled, and that the board does not want to encourage the use of Arbitration to bypass or force other channels. The motion was carried as

  m20161001.1

2.5 RA-Audit and ATE

It had to be decided how ATEs can be run successfully in times with few active RA auditors, and what the minimal requirements for RA audit (and the goals of an ATE) are.

Motions:

• Resolved, that at least one co-auditor / RA auditor should be present for each ATE. The motion was carried as

  m20161001.2

2.6 ABCs

The case and audit sessions touch questions about responsibilities in ABC between team leads and arbitration.

Motions:

• Resolved, that the motion m20151206.8 is adjusted such that audit session 2014.1 is deferred. The Executive acknowledges that the purpose of the ABC is to control for conflicts of interest, and, that its entire definition and process is in the hands of the forum of Arbitration under DRP, as long as not defined otherwise by Policy Group. The executive’s role as handed to its team leaders is limited to requesting an ABC over a member being put forward for a potential critical role under SP and being guided by the ruling (thus agreeing with 2014.1 recommendation number I). The executive acknowledges the principles of the community, and especially, as we hold the safety and well being of all members paramount, the board stresses that we will not place a member into an unacceptable conflict of interest that could bring harm to that member or others. The executive does not give nor include the recommendations regarding the Arbitrator, as they are outside the authority where the executive my interfere. However, the executive recognises that audit should exist and probe these issues, and any such recommendations can be forwarded to Arbitration for further comment, but without endorsement formally by executive. The motion was carried as

  m20161001.3

2.7 AGM preparation

• Treasary report: Treasurer is confident to match the date in 2 weeks.
• Proposed time frame: AGM on Nov 20th, special resolutions by 30th October,
  • and ordinary by 6th November.
• Treasurer prepares status about payments of members.

There was a discussion initiated by the idea of required resolutions for a possible move of CAcert, and how the outcome could be based on the "cabinet" proposals from Eva.

2.8 Old board

No news.

2.9 Status of Move of CAcert Inc.

Picked up in agenda item 2.8.

2.10 Data protection officer (added as late business)

Common understanding is that some countries/areas like the EU require to have a DPO and that it must be a human person (so it can't be board).

Discussion stopped because meeting time approaches 4h.

2.11 Hand-over request (added as late business)

There wasn't a statement about deletion of KPL from last board in the context of handover.

4 Closing

The meeting is closed on 15:05 UTC.

Motions

• m20161001.1: Withdraw a20140316.1 (database cleanup regarding deleted accounts)

• m20161001.2: Number of required RA auditors in ATE

• m20161001.3: Defer audit session 2014.1

Actions

---

• CategoryBoardMinutes