Committee Meeting 2025-08-07 18:00 UTC

The meeting will take place at 18:00 UTC at https://meet.jit.si/cacert If you do not have audio channel, you may try in the IRC channel #board-meeting on the CAcert IRC network.

Feel free to add a business item within the acceptance period of 48 hours or your question to the board below. Non-committee members: the committee may choose to convert any business proposed as a question in the questions section.

<!> Daylight Saving Time: 18:00 UTC = 20:00 CEST (Geneva) = 14:00 EDT (New York)

Agenda

Signs that appear in the agenda
<!> Formulated motion on your topic. It will be put to the vote. Adjustments may be made before the vote. A motion must be submitted for resolutions!
{i} Information for your attention. Does not need to be explained or discussed at the meeting. Purpose: Everyone is up to date. (max. 10 seconds)
(!) Discussion topic with or with no decision.

  1. Preliminaries
    1. Chair opens the Committee Meeting

    2. {i} Secretary is making minutes

    3. <!> Accept minutes from 10. July 2025 <!> "I move to accept the minutes of the committee meeting of 10th of July 2025."

    4. Chair asks whether cacert-board-private or cacert-board maillist or Threema chat or Telegram group includes any items that need to be disclosed to Members.

    5. Agree on the 4. Sept. 2025, 18:00 UTC as date for the next committee meeting. (Following date probably, 2. Oct. 2025)

  2. Business

    1. OpenID Connect (Brian, Dirk, S.T.)

      1. Last steps: OIDC&moinmoin by Dirk

      2. Dirk & Stefan by Dirk

      3. Documentation: by Dirk
      4. Documentation: by Brian

    2. OrgA (Alex, Etienne)

      1. Next steps

    3. Communication

      1. ON HOLD (!) Let's Encrypt @wiki & @blog (is on hold until OIDC is running) Let's encrypt for public-facing sites (wiki and blog) has long been desired. It should be noted that these certificates must be replaced every 90 days. Automation is not trivial. JanDD ideas are on the testserver, but OpenID Conect has priority. It will be installed only after client cert login is remplaced by OIDC.

    4. (!) CPS (Jan's suggestion to comment on GIT; see @)

    5. {i} CAcert Youth Projects There was a telephone conference in July with a couple of good ideas. They are currently being recorded, sorted and developed.

    6. Assurer Location Databse cannot been purged. Following Brian, with another solution, there will be the same problem. To be followed.

    7. Reactivation of M.G. (New Roots & Escrow) and S.T. (OICD) by Dirk; Peter M and Kevin D for Westpac (ny Dirk); Bradley by Brian.

    8. Finances

      1. <!> "I move close the PayPal account as soon as we have got the last cent of it." (on behalf of the treasurer by the secretary)

      2. <!> "I move a global ban on outsourcing functional services to incompetent companies or companies with IT systems that are not customer-compatible." (on behalf of the affiliates department by the secretary)

    9. Any other business (board members forgot to ask the secretary to put it on the agenda)

    10. Prio (Aug, Sept) New point calculation (Dirk), Documentation (Brian), AGM (Etienne), CPS (Kim, Aleš) -> for details, see table below

  3. Question Time

    Questions from CAcert.org community members can be added until beginning of committee meeting! As well questions can be asked at "Question Time", without added question here.

    1. "Question One." added by Your Name Comment: Replace "Question One" by your Question and add your name

1. Closing

Priorities 2024/2025

(!) (!) OpenID Connect (WordPress!, Matrix?, Nextcloud?)

Brian, Dirk, ...

ongoing

(!) (!) CPS (a PolG; b New Signer; some work already done by Jan)

(a) Kim, (b) Jan, (c) Ales

ongoing

TTP*

Remote assurance*

More new assurers*

(!) New point calculation (re-view WebDB; 2xreview; implement, https://bugs.cacert.org/view.php?id=1054 https://bugs.cacert.org/view.php?id=1042)

September

(!) Push OrgA

Etienne, Alex

starting

  1. on hold (for later this year)
    1. Infrastructure: (Dirk)

      1. Start thinking about planning when to do things about new roots, so we are prepared several years in advance, as no certs should have a end-date after any root certificates. Also take a look at the old Escrow article. https://wiki.cacert.org/Roots/EscrowAndRecovery

    2. Remote Assurance (Brian)

      1. {i} Creation of remote assurance sub committee (RASC) on the hold until Eva is available for the policy. Secretary got in touch with Eva on Oct. 12.
        "Users Requests, summarized." added by Aleš a) need for a distant assurance (no assurers, no TTP possibility in their country); b) need for the write access to our Wiki.

  1. To remember: Goals 2021/2022 (propositions by board 2020/2021) - Each goal needs a responsible person on the board who keeps an eye on it and reports regularly, keeps in touch with the responsible people. {X} obsolete / (./) started / {OK} waiting for available time

    • push OrgA (Guy)
    • expand PR (Alex cannot do this, wants to hand over)

    • (./) delivering the OpenID Connect integration, for which CAcert is funded by the RIPE NCC.

    • (./) expand background check

    • {OK} remote assurance, if accepted by the community;

    • (./) simplify the certificate creation (this enables the start of various projects from the pipeline)

    • software development and testing

    • (./) New CSR software

    • {X} support SecureU (find an active board member for them in Germany)

  2. Not to forget: Staffing the teams
    1. Applicants to the Infrastructure team
    2. Applicants to the Development team
    3. Applicant to the Critical team

  1. Access to local systems for board members

Person

Board-Private

Committee Archive

Wiki

Nextcloud

Brian

(./)

(./)

(./)

(./)

Etienne

Admin

Admin

(./)

(./)

Kim

(./)

(./)

(./)

(./)

Michael

X

(./)

<!>

(./)

Aleš

(./)

(./)

(./)

(./)

Dirk

(./)

?

(./)

?

Wacław

X

(./)

<!>

?

FrédéricD

X

(./)

(./)

Admin

FrédéricG

X

(./)

(./)

(./)

1. Tasks assigned to Board Members and others

Person

Task

Deadline

Other People Involved

Notes

Brian

Contact QA/QC Volunteers

10 January 2022

Gero Treuner, Peter Nunn, others?

To begin work, they do not need ABC.

Brian

bla

2022

xxx

xx.

Brian

bla

2022

xxx

xx.

  1. Software Team

    1. Issue 1502: Adapt the UI at CAcert.org to deal with the "keygen" feature having been removed in browsers (Some of this will be met with 1551 )

    2. Issue 1482: Limit validity period of new HTTPS certificates to one year

    3. Issue 1444: PHP - Brian

    4. Issue 1417: Keygen / new CSR software - Bernhard

  2. Organisation Assurance
    1. How to relance OrgA? (Guy)
  3. Grant applications

    1. Protopype Fund https://prototypefund.de/en/ (mail to SW Board only)

      1. The Prototype Fund is a project of the Open Knowledge Foundation Germany, funded by the Federal Ministry of Education and Research (BMBF). This is for residents of Germany only. We could create a group of people that work on a project for CAcert (with all support of the others in the background). It runs for two more years, every 6 month.
      2. Infra does not see any acute need at the moment, and does not have the capacity to provide qualified support.
      3. There are some ideas for software, but in infra's view there is still a lot of conceptual and preparatory work missing. What Infra could imagine is financing people to carry out a requirements analysis and write a requirements and test specification. This could then be used as a basis for a new implementation of the CAcert software (WebDB, Signer and perhaps other things like CATS). But these are just a few ideas of JanDD and he cannot currently recommend any people who would be suitable for this. Potential candidates would have to deal intensively with the existing software on the one hand and with the underlying policies on the other, and would have to identify a lot of missing information, ask for it and make assumptions for discussion. This requires very good analytical and communication skills and a high level of stamina.
  1. Blockchain

    1. see here: https://wiki.cacert.org/Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2018-03-01/ideas#Blockchain (waiting for answer from IanG)

Minutes Committee meeting - 2025-08-07

Present, by alphabetical order: Aleš, Brian, Etienne, Kim

Opening

The president opens the Committee Meeting at 18:04. The minutes of the last meeting were accepted by four ayes. (m20250807.3). The committee agrees on the 4th of Sept 2025, 18:00 UTC as date for the next committee meeting.

1.3. The minutes of July are accepted with 4 ayes (the 5thh member was absent).

1.4. The 4. Sept 2025 as date for the next meeting is accepted.

Business

2.1. OpenID Connet: The secretary gives BMC a hand to remove personnal details from the screen shots before they are published on the wiki one by one. The other points are re pushed to September due to the absence of Dirk.

2.4. CPS: All board members should comment these days. The secretary will then again write at PolG for last comments.

2.5. Youth: There was a telephone conference in July with a couple of good ideas. They are currently being recorded, sorted and developed. Thank you to Brian, Kim and Ron for their good ideas and comments.

2.6. The following questions are raised (to be answered until September 4th):

2.7. Activate new people: MG and ST by Dirk; Bradley by Brian; Australian money: Dirk gets in touch with Peter M and Kevin D (Westpac).

2.8.1. Finances: Once again we got trouble with PayPal. This time, to know from wehere our money comes from, they want for the 4th time a passport copy from the treasurer and a bank statement from us?! We vote and accept the following motion: "I move close the PayPal account as soon as we have got the last cent of it." (on behalf of the treasurer by the secretary)

2.8.2. is withdrawn. Background: After booking.com outsourced the partnership to an external service provider after around 15 years, it was formally cancelled and we were referred to the service provider. They refused to enter into a new partnership, even after 4 months of correspondence they could not say why. In the meantime, we found out for ourselves: it is the partner for Africa, Asia, Pacific and America, but not for Europe. He in turn does not accept our Swiss bank account because, as a British company, he does not yet know that IBAN was introduced in Switzerland over 10 years ago. However, when we transfer the dollars in euros as francs, the service provider accepts an IBAN as the account number, even for Switzerland. For security reasons, each field has to be re-enabled with a requested code before each entry, but if it starts with a 0, the input field is blocked and, fortunately, only around 60% of all codes have a leading zero. Do not count the hours spend for that. (But CAcert needs this income.)

2.10. Prio (Aug, Sept) or homework for board members for the next seven weeks New point calculation (Dirk), Documentation (Brian), AGM & Paypal access (Etienne), CPS (Kim, Aleš)

The president closes the meeting at 18:46.

Motions

Actions

Who

Status

Action

Minutemaker

wip

prepare Agenda and Minutes for the next meeting

Brian

Software meeting

every 2 month

Secretary

bank

accounts, contact with treasurer

Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2025-08-07 (last edited 2025-08-07 20:08:43 by EtienneRuedin)