. '''To Brain''' '''[[Brain#CAcert_Inc._-_CAcert.org_Members_Association| CAcert Inc. - CAcert.org Members Association]]''' - '''[[AGM|General Meetings]]''' - '''To Brain CAcert Inc. Committee''' '''[[Brain/CAcertInc/Committee/MeetingAgendasAndMinutes| Meeting Agendas & Minutes]]''' - '''[[OverviewProjectsBoard|Board's Project Overview]]''' - '''[[Brain/CAcertInc/Committee/ActionItems|Current Action Items]]''' - '''[[Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2025-01-02|last meeting]]''' - '''[[Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2025-03-06|next meeting]]''' ---- = Committee Meeting 2025-01-02 19:00 UTC = The meeting will take place at '''[[http://www.timeanddate.com/worldclock/fixedtime.html?msg=Board+Meeting&iso=2025-01-30T19:00:00|19:00 UTC]]''' at https://meet.jit.si/cacert If you do not have audio channel, you may try in the IRC channel '''#board-meeting''' on the [[https://irc.cacert.org/#board-meeting|CAcert IRC network]]. Feel free to add a business item within the acceptance period of 48 hours or your question to the board below. Non-committee members: the committee may choose to convert any business proposed as a question in the questions section. || '''Normal Time:''' 19:00 UTC = 20:00 CET (Geneva) = 14:00 EST (New York) || == Agenda == '''Signs that appear in the agenda'''<
> Formulated motion on your topic. It will be put to the vote. Adjustments may be made before the vote. A motion must be submitted for resolutions!<
> {i} Information for your attention. Does not need to be explained or discussed at the meeting. Purpose: Everyone is up to date. (max. 10 seconds)<
> (!) Discussion topic with or with no decision. 1. Preliminaries 1. Chair opens the Committee Meeting 1. {i} --(Who)-- Secretary is making minutes --(?)-- 1. Accept minutes from 2. Jan. 2025 "I move to accept the minutes of the committee meeting of 2nd of Jan 2025." 1. Chair asks whether [[https://lists.cacert.org/wws/arc/cacert-board-private|cacert-board-private]] or [[https://lists.cacert.org/wws/arc/cacert-board|cacert-board]] maillist or Threema chat or Telegram group includes any items that need to be disclosed to Members. 1. Agree on the '''6th of March 2025, 19:00 UTC''' as date for the next committee meeting. (Following dates probably, 3rd of April 2025) 1. Business 1. '''OpenID Connect''' (Brian, Dirk, S.T.) 1. Last steps: by ? (lead) and ? (help) until ? 1. Documentation: by ? (lead) and ? (help) until ? 1. (!) '''"I see double"''' (Etienne) 1. Draft 1. Next steps 1. '''OrgA''' (Alex, Etienne) 1. reactivaction, admin rigths 1. '''Support Support''' 1. OpenID @wiki & @blog (who shares infos with secretary) 1. Let's Encrypt @wiki & @blog (skip for March) 1. Progress report: To '''delete accounts''' of users who are org-admins, any rule, arbitrator act, or a technical intervention is needed. --> next steps following Aleš 1. '''CPS''' To delete some accounts, the software repair should be completed. --> Following Report of Dirks investigation (of 10. Jan. 2025). --> next steps following Aleš: '''PolG or not''' 1. '''CAcert Youth Projects''' (2.5 in December 2024) -- no information this month. 1. Events: Fosdem in Elsene/Bruxelles on 1./2. Feb. 2025 (CAcert is there at the info desk - look out for CubeOS T-shirts with CAcert jackets!) 1. Any other business (board members forgot to ask the secretary to put it on the agenda) 1. Question Time {{{#!wiki note Questions from CAcert.org community members can be added until beginning of committee meeting! As well questions can be asked at "Question Time", without added question here. }}} 1. ''"Question One."'' added by Your Name ''Comment: Replace "Question One" by your Question and add your name'' 1. Closing ||||||'''Priorities 2024/2025'''|| || OpenID Connect (WordPress!, Matrix?, Nextcloud?) || Brian, ... || ongoing || || CPS (a PolG; b New Signer; some work already done by Jan) || (a) Kim, (b) Jan || starting || || TTP* || || || || Remote assurance* || || || || More new assurers* || || || || New point calculation (re-view WebDB; 2xreview; implement, https://bugs.cacert.org/view.php?id=1054 https://bugs.cacert.org/view.php?id=1042) || || || || Push OrgA || || || ---- 1. on hold (for later this year) 1. Infrastructure: (Dirk) 1. Start thinking about planning when to do things about new roots, so we are prepared several years in advance, as no certs should have a end-date after any root certificates. Also take a look at the old Escrow article. https://wiki.cacert.org/Roots/EscrowAndRecovery 1. Remote Assurance ('''Brian''') 1. {i} Creation of remote assurance sub committee (RASC) on the hold until Eva is available for the policy. ~-Secretary got in touch with Eva on Oct. 12.<
>''"Users Requests, summarized."'' added by Aleš a) need for a distant assurance (no assurers, no TTP possibility in their country); b) need for the write access to our Wiki.-~ ## 1. (!) Setting priorities for the first part of the year (discussion, decision) ## 1. OpenID, Elephant, ERP ## 2. Big Mail, Paypal, Backgroundcheck ## 3. OrgaA, Tax exemption<
><
>Following the '''priorities''', some of the following topics have to be moved back in time. They will be picked up a soon as another has been completed: ## 1. '''OrgA'''<
>issue: reactivate and create group<
>who: ?, +?<
>what help needed:<
>next step: ---- 1. To remember: Goals 2021/2022 (propositions by board 2020/2021) - Each goal needs a responsible person on the board who keeps an eye on it and reports regularly, keeps in touch with the responsible people. {X} obsolete / (./) started / {OK} waiting for available time * push OrgA (Guy) * expand PR (Alex cannot do this, wants to hand over) * (./) delivering the OpenID Connect integration, for which CAcert is funded by the RIPE NCC. * (./) expand background check * {OK} remote assurance, if accepted by the community; * (./) simplify the certificate creation (this enables the start of various projects from the pipeline) * software development and testing * (./) New CSR software * {X} support SecureU (find an active board member for them in Germany) 1. Not to forget: Staffing the teams 1. Applicants to the Infrastructure team 1. Applicants to the Development team 1. Applicant to the Critical team <> 1. Access to local systems for board members ||''Person'' ||''Board-Private'' ||''Committee Archive'' ||''Wiki'' ||''Nextcloud'' || || Brian || (./) || (./) || (./) || (./) || || Etienne || Admin || Admin || (./) || (./) || || Kim || (./) || (./) || (./) || (./) || || Michael || X || (./) || || (./) || || Aleš || (./) || (./) || (./) || (./) || || Dirk || (./) || ? || (./) || ? || || Wacław || X || (./) || || ? || || FrédéricD || X || (./) || (./) || Admin || || FrédéricG || X || (./) || (./) || (./) || 1. Tasks assigned to Board Members and others ||''Person'' ||''Task'' ||''Deadline'' ||''Other People Involved'' ||''Notes'' || ||Brian ||''Contact QA/QC Volunteers'' ||''10 January 2022'' ||''Gero Treuner, Peter Nunn, others?'' ||''To begin work, they do not need ABC.'' || ||Brian ||''bla'' ||'' 2022'' ||''xxx'' ||''xx.'' || ||Brian ||''bla'' ||'' 2022'' ||''xxx'' ||''xx.'' || || || || || || || ---- 1. Software Team 1. Issue [[https://bugs.cacert.org/view.php?id=1502|1502]]: Adapt the UI at CAcert.org to deal with the "keygen" feature having been removed in browsers (Some of this will be met with [[https://bugs.cacert.org/view.php?id=1502|1551]] ) 1. Issue [[https://bugs.cacert.org/view.php?id=1482|1482]]: Limit validity period of new HTTPS certificates to one year 1. Issue [[http://bugs.cacert.org/view.php?id=1444|1444]]: PHP - Brian 1. '''Issue [[http://bugs.cacert.org/view.php?id=1417|1417]]: Keygen / new CSR software - Bernhard''' 1. Organisation Assurance 1. How to relance OrgA? (Guy) 1. Grant applications 1. Protopype Fund https://prototypefund.de/en/ ([[https://lists.cacert.org/wws/arc/cacert-committee-archive/2021-05/msg00005.html|mail to SW]] Board only) 1. The Prototype Fund is a project of the Open Knowledge Foundation Germany, funded by the Federal Ministry of Education and Research (BMBF). This is for residents of Germany only. We could create a group of people that work on a project for CAcert (with all support of the others in the background). It runs for two more years, every 6 month. 1. Infra does not see any acute need at the moment, and does not have the capacity to provide qualified support. 1. There are some ideas for software, but in infra's view there is still a lot of conceptual and preparatory work missing. What Infra could imagine is financing people to carry out a requirements analysis and write a requirements and test specification. This could then be used as a basis for a new implementation of the CAcert software (WebDB, Signer and perhaps other things like CATS). But these are just a few ideas of JanDD and he cannot currently recommend any people who would be suitable for this. Potential candidates would have to deal intensively with the existing software on the one hand and with the underlying policies on the other, and would have to identify a lot of missing information, ask for it and make assumptions for discussion. This requires very good analytical and communication skills and a high level of stamina. 1. Blockchain 1. see here: https://wiki.cacert.org/Brain/CAcertInc/Committee/MeetingAgendasAndMinutes/2018-03-01/ideas#Blockchain (waiting for answer from IanG) ## ####################################################################################### ## FILL IN MEETING AGENDA ITEMS FROM LAST MEETING MINUTES DEFERRED TO NEXT MEETING ## ####################################################################################### <> == Minutes Committee meeting - 2025-01-02 == Present, by alphabetical order: Aleš, Etienne, Dirk; appologies: Brian, Kim === Opening === The secretary opens the Committee Meeting at 19:15. The minuts of the last meeting were postponed until more board members join in and finally voted as a seven day motion (m20250130.1). The committee agrees on the 6th of March 2025, 19:00 UTC as date for the next committee meeting. (Following dates probably 3rd of April, 1st of May 2025) === Business === 2.1. '''OpenID Connet''': {i} Dirk and Jan are currently testing the OIDC version for Roundcube and Dovecat. Next step: Phyton Script for OIDC version for Moinmoin Wiki. 2.2. '''CAcert Spain (was: "I see double")''': Draft of a letter to the Spanish competition is presented. Aleš is happy with it. Dirk likes non non offensive first aporach. Etienne pointed out, that it should be written '''2003''' instead of 2023. ''Dirk'' will discuss it with ''Brian'' and ''Kim'' on the wednesday meeting. 2.3. '''OrgA''': {i} Etienne is in touch with Alex. More will follow. 2.4.1. '''OpenID''' @wiki & @blog; more will come -> see 2.1. 2.4.2. '''Let's Encrypt''' @wiki & @blog: Let's encrypt for public-facing sites (wiki and blog) has long been desired. It should be noted that these certificates must be replaced every 90 days. Automation is not trivial. JanDD has ideas, but OpenID Conect has priority. It will be looked at when OpenID Connect access is installed after FOSDEM. ''Dirk'' wants to report in more detail in March (possibly as early as the end of January?). 2.4.3. '''Delete accounts with OrgA''' and '''Software repair''': Aleš sent the e-mail-address of the corrupt accounts to Dirk. Dirk will analyse it and gives him an answer, how to proceed as soon as Firewall 2 is updated. 2.4.4. '''CPS''': Dirk will discussed the draft with a former arbitrator (E.S.). Following this talk, the approach is correct. It will be pushed to PolG for discussion. The secretary will write a short introduction. If (1) PolG votes for the new CPS, (2) the committee has too take a decision after that to create the new root certificates. (3) Critical and Software have to implement it then. 2.5. '''Youth''': {i} a draft of communication is available, in a first time only in German. Discussion outside of the committee meeting. 2.6. '''FOSDEM''': {i} CAcert is there at the info desk (look out for CubeOS T-shirts with CAcert jackets!) 2.7. '''Hardware''': {i} There was a visit at BIT. A minor error at the signing CPT server was solved. Infra is updated. Firewall 2 is prepare for the next update. 2.8. '''Support''': Aleš presents a nice statistics about the work of support. Unfortunately, support receives a lot of spam mails (up to 30 on week days, up to 3000 on attacks). Pro and con of automated spam detention are discussed. ''Dirk'' will adress the topic with Jan. The secretary closes the meeting at 20:01. <> === Motions === * https://motion.cacert.org/motions/m20250130.1 (minutes january) <> === Actions === || ''Who'' || ''Status'' || ''Action'' || || Minutemaker || wip || prepare Agenda and Minutes for the next meeting || || Brian || Software meeting || every 2 month || || Secretary || bank || accounts, contact with treasurer || ---- . CategoryBoardMinutes