For DisasterRecovery and for other purposes, the first thing is to identify the processes.

  1. Assurance (Org and exceptions)
  2. Issuance of certificates
  3. Member accounts
    • creation of news ones
    • checking of email and domain addresses
    • general support / helpdesk
    • revocation
  4. Disputes Resolution
    • Arbitration
    • (Board)
  5. CRL/OCSP distribution
  6. Policy
  7. Association
    • Board
    • Members
    • meetings - board and AGM
    • membership secretary
  8. Auditing
    • internal
    • (external but cannot be included in the list)
  9. Education Campus
    • Training
    • CATS (CAcert Automated Testing System)
  10. Communications and Documentation
    • email handling
    • maillists
    • blog
    • wiki
    • svn
  11. HR Human Resources
    • recruitment of new people
    • training (EDU)
    • testing (EDU)
    • background checks
  12. Software Development
    • breaches
    • emergency patches
  13. System Administration