- Case Number: a20090626.1
- Status: closed
- Claimants: Chris van Meerendonk
- Respondents: CAcert support
- Complaint:
Dear cacert member, My problem is that I registered a CACert account under my common name instead of first full name, but already have 70 points so I cannot change it anymore. At the ATE meeting in Amsterdam, june 15th, I was attended on this being incorrect and was asked by a CACert representative to get the points removed to be able again to change my name. Can you please remove my points? Kind regards, Chris van Meerendonk
- Relief: Revocation of received Assurances
Case Manager: BernhardFröhlich
- Arbitrator: Lambert Hofstra
- Date of arbitration: 2009/06/29
- Case closed: 2009/07/22
Before: Arbitrator Lambert Hofstra (A). Respondent: CAcert support (R) Claimant: Chris van Meerendonk (C) Case: a20090626.1
- 20090630 CM: Sent initiating mail
- 20090630 C: Accepts CCA and DRP
- 20090706 A: send email to C, asking for 1) a signed email to verify C is in control of the account, and 2) names of people who can confirm his statement
- 20090707 C: replies with signed and encrypted email, and providing names of others that have seen his ID and account data
- 20090708 A: According to the security policy Support can use special features when given authority to do so by either an arbitrator, or the member. I have verified the authenticity of the member by 1) verifying member is in full control of the account and corresponding email address, and other assurers have verified the claim of said member. Therefore I ask Support to revoke the issued points as requested.
=================== https://svn.cacert.org/CAcert/Policies/SecurityPolicy.html#8.1 8.1. Authority The software interface gives features to Support Engineer. Access to the special features is under tight control. Additions to the team are approved by Board, and the software features are under CCS. See §3.4.2. Support Engineers do not have any inherent authority to take any action, and they have have to get authority on a case-by-case basis. The authority required in each case must be guided by this policy or the Security Manual or other clearly applicable document. If the Member's authority is not in doubt, the Member can give that authority. If not, the Arbitrator's authority must be sought. Support Engineers are responsible to follow the policies and practices. ====================
- 20090710 CM: Support confirms that both assurances received by Mr. Chris van Meerendonk have been revoked.
- 20090722 A: This ruling can be used when support receives a request from a member to revoke one or more assurances. Support can revoke, when the authority of the member is established. To establish the authority, on of these two conditions must be met:
- the Member sends a signed email (signed with his/her CAcert certificate) proving that Member has access to both email address and CAcert account
- the Member requests the revocation, and one (or more) Assurer(s) confirms this by sending a signed email
Note: a member can only request to have the points removed he/she received from an Assurer, not points he gave to another member as an Assurer