Below are the current minimum hosting specifications CAcert needs to continue operations:
- 3 RU
- 2 ethernet switch ports
- 4 IP addresses
- 50-60G per month outbound traffic
- 3-4G per month inbound traffic
- Each server has 150-200W PSUs
- On-site security personal 24x7, and 24x7 access at short notice for CAcert personnel.
- Restricted access to our equipment, such that 2 people need to be on-site at the same time before access is granted.
- Physical security of our equipment from everyone but those that are authorized by our own audits and background checks of them.
There is a number of political complications with hosting in any country. Current highlighted problems that exist in different countries.
- Data retention laws in Europe.
- PATRIOT and other acts in the US.
- Data retention and requirements for handing over private keys in the UK
There are some countries that have greater concern for frivolous lawsuits:
- US
Regarding the US:
"Patriot" legislation deals almost entirely with the movement of money or other forms of payment. To the limited extent they deal with so-called subversive activities, all that is still subject freedom of speech & association principles, which are constitutionally protected. Crypto remains legal in the US, and their is no requirement to hand over your keys & password upon request, as their is in the UK. Patriot has no effect on us--it has a huge effect on paypal, for example.
While the US remains the home of frivolous lawsuits, a well worded disclaimer is appropriate: "Like most certificate authorities, all we do is examine government issued identification and simply attest that they appear to be authentic and match the person presenting them. In no way are we responsible for the acuracy of the documents presented, nor the individual or company's business practices nor, security measures". LanceHaverkamp