SlideShare a Scribd company logo

201012 cacert-at-tokyodebian

Taisuke Yamada
Taisuke Yamada

An introduction to CAcert, a community-based root CA. Includes detailed instruction on actual assurance procedure and a guide on how to run an assurance event.

Technology
1 of 13
Download to read offline
71 Debian 2010 12 1 CAcert 1.1 CAcert CAcert 2002 2003 CAcert Inc. S/MIME etc CAcert OS VeriSign *1 CAcert 1. 2. 1. 2. CAcert 1. 2. CAcert CA CAcert CAcert CAcert CAcert Inc. *1 1
1. 2. 100pt 3. 100pt Web of Trust 1.2 CAcert - CAcert https://cacert.org/ CAcert Asurer ≥0 Member ≥1 Member Member Root ≥ 50 Assured Member ≥ 100 Prospective Assurer ≥ 100 + Assurer 10 0-2EP ≥ 100 + 10EP + Assurer 15 ≥ 100 + 20EP + Assurer 20 ≥ 100 + 30EP + Assurer 25 ≥ 100 + 40EP + Assurer 30 ≥ 100 + 50EP + Assurer 35 Experienced Assurer / Senior Assurer 1 100pt Assurance Point Assurer 2EP 10EP/20EP/... Experience Point 25 20 100pt 100pt Assurer *2 *2 https://cats.cacert.org/ 2
1 Assurer Experienced / Senior Assurer Experienced Assurer Senior Assurer Experienced Assurer 50EP 100pt 25 SeniorAssurer 1. Experienced Assurer 2. co-auditor*3 3. *4 ATE(Assurer Training Event) 4. CARS - CAcert Assurer Reliable Statement CAcert Senior Assurer CAcert Senior Assurer 1.3 *3 Assurance Office Experienced Assurer *4 3
Assurer a 1. b 2. CAP(CAcert Assurance Program) Form c 3. 4. CCA(CAcert Community Agreement) a / b https://secure.cacert.org/cap.php c Member 1. CAcert 2. a 3. CAP Form OK a https://secure.cacert.org/cap.php - CAcert GPG 1. Assurer CCA Assurer CAcert a CAcert Assurer b 1000EUR 2010/12 10 c COD - CAcert Official Document 2. Member 3. Assurer Member CAP Form 4. Assurer a CCA b c cacert.org d e f 5. a b CAcert 4
dispute *5 Assurer c CAP Form d e PhD 6. 7. CAP Form Assurer Assurer CAP Form 1. CAP Form 2. cacert.org CAP Form 3. CAP Form ←←← mOm JK support@cacert.org 1.4 GPG CAcert CAP Form Assurer *6 support@cacert.org 1.5 CAcert CAcert *5 *6 CAP Form 5
1. Event Office (http://wiki.cacert.org/Officers) 2. CAcert EventOffier 3. *7 4. Assurer Assurer 5. 6. 7. 8. EventOfficer Event Office CAcert 1.5.1 CAcert Event Office Event Organiser 1 Event Office Experienced Assurer 3+ Assurer 2+ EA CAP Form EA 2+ 2 CAcert 1+ 1+ 1+ 0+ PC 1+ Knoppix 1 CAP Form 10+ 1 3 CAcert *7 6
Assurer 1 CAP Form 1p, 30+ Assurer CAP Form 1p, 20+ Assurer CCA (4p) 50+ Assurance CCA ( 1 Assurance Policy (8p) 1+ Assurance Handbook (29p) 1+ Root Distribution License (1p) 1 Dispute Resolution Policy (6p) 1 Practice On Names (4p) 1+ Assurer Practice On ID Checking (4p) 1+ Assurer PoJAM (4p) 1 CPS(28p) 1 0+ CAcert Office IR 4 CAcert CCA(CAcert Community Agreement) 1.5.2 1. CAcert 3-5 *8 CAP Form 2. Assurer Member( ) Member 3. Assurer Experience Point Assurance *8 Assurer 7
2 CAcert Assurer 1.6 CAcert CAcert Wiki CAcert COD (CAcert Official Document) 8
COD1 Policy on Policy (PoP) POLICY IETF COD2 Configuration-Control DRAFT DOC/HW/SW Specification(CCS) COD3 CAcert Official Docu- ments Policy (COD) COD4 Non-Related Persons – Disclaimer and Licence COD14(Root Distribution License) (NRP-DaL) COD5 Privacy Policy (PP) POLICY COD6 Certification Practice DRAFT Statement (CPS) COD7 Dispute Resolution POLICY CAcert Policy (DRP) COD8 Security Policy (SP) DRAFT COD9 CAcert Community CAcert Agreement (CCA) COD10 NA COD11 Oranisation Assurance POLICY CAcert Policy(OAP) COD12 NA COD13 Assurance Policy (AP) POLICY COD14 Root Distribution Li- DRAFT CAcert cense (RDL) - Assurer Handbook WiP(Work in Progress - ) DRAFT POLICY 2010 CAcert Member/Assurer 9
3 CAcert COD[0-9]+ PoP/CCS/CCA/PP/DRL/... DRP( )/CCS( )/CCA /Handbook CAcert Inc. 4 CAcert REF: http://wiki.cacert.org/Officers CAcert Wiki 10
support@cacert.org ML 1.7 CAcert *9 Assurer CAcert CAcert 1.8 CAcert 1. Using Secure DNS to Associate Certificates with Domain Names For TLS https://datatracker.ietf.org/doc/draft-ietf-dane-protocol/ 2. - DNS - KIDNS (Keys in DNS) - http://dnsops.jp/bof/20101125/201011-DNSOPS-KIDNSv5.pdf CERT/TLSA SSH/PGP *10 CA 10 DNSSEC *9 CAcert Inc. *10 GnuPG 11
12
Debian 2010 12 18 1 Debian 13

Recommended

Casual Web-browsing with gPXE and SYSLINUX
Casual Web-browsing with gPXE and SYSLINUXCasual Web-browsing with gPXE and SYSLINUX
Casual Web-browsing with gPXE and SYSLINUXTaisuke Yamada
 
Videoconferencia 1 USMP Virtual
Videoconferencia 1 USMP VirtualVideoconferencia 1 USMP Virtual
Videoconferencia 1 USMP VirtualBernabe Soto
 
Nilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianNilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianTaisuke Yamada
 
Hadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateHadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateTaisuke Yamada
 
Rúbrica Pensamiento Crítico
Rúbrica Pensamiento CríticoRúbrica Pensamiento Crítico
Rúbrica Pensamiento CríticoBernabe Soto
 
Analizando el modelo de adiestramiento para inquiri.
Analizando el modelo de adiestramiento para inquiri. Analizando el modelo de adiestramiento para inquiri.
Analizando el modelo de adiestramiento para inquiri. Bernabe Soto
 
Hacking Ruby with Python
Hacking Ruby with PythonHacking Ruby with Python
Hacking Ruby with PythonTaisuke Yamada
 
Videoconferencia 2 USMP Virtual
Videoconferencia 2 USMP VirtualVideoconferencia 2 USMP Virtual
Videoconferencia 2 USMP VirtualBernabe Soto
 

Recommended

Casual Web-browsing with gPXE and SYSLINUX
Casual Web-browsing with gPXE and SYSLINUXCasual Web-browsing with gPXE and SYSLINUX
Casual Web-browsing with gPXE and SYSLINUXTaisuke Yamada
 
Videoconferencia 1 USMP Virtual
Videoconferencia 1 USMP VirtualVideoconferencia 1 USMP Virtual
Videoconferencia 1 USMP VirtualBernabe Soto
 
Nilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianNilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianTaisuke Yamada
 
Hadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateHadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateTaisuke Yamada
 
Rúbrica Pensamiento Crítico
Rúbrica Pensamiento CríticoRúbrica Pensamiento Crítico
Rúbrica Pensamiento CríticoBernabe Soto
 
Analizando el modelo de adiestramiento para inquiri.
Analizando el modelo de adiestramiento para inquiri. Analizando el modelo de adiestramiento para inquiri.
Analizando el modelo de adiestramiento para inquiri. Bernabe Soto
 
Hacking Ruby with Python
Hacking Ruby with PythonHacking Ruby with Python
Hacking Ruby with PythonTaisuke Yamada
 
Videoconferencia 2 USMP Virtual
Videoconferencia 2 USMP VirtualVideoconferencia 2 USMP Virtual
Videoconferencia 2 USMP VirtualBernabe Soto
 
Evaluación de procesos y productos educativos
Evaluación de procesos y productos educativosEvaluación de procesos y productos educativos
Evaluación de procesos y productos educativosBernabe Soto
 
Taller: Videotutoriales USMP Virtual
Taller: Videotutoriales USMP VirtualTaller: Videotutoriales USMP Virtual
Taller: Videotutoriales USMP VirtualBernabe Soto
 
La histora en la era digital: futuro, investigación y cambio.
La histora en la era digital: futuro, investigación y cambio. La histora en la era digital: futuro, investigación y cambio.
La histora en la era digital: futuro, investigación y cambio. Bernabe Soto
 
Diseño de Experiencias Educativas
Diseño de Experiencias EducativasDiseño de Experiencias Educativas
Diseño de Experiencias EducativasBernabe Soto
 
Procesamiento de información
Procesamiento de información Procesamiento de información
Procesamiento de información Bernabe Soto
 
Ciencias del Aprendizaje y Constructivismo
Ciencias del Aprendizaje y ConstructivismoCiencias del Aprendizaje y Constructivismo
Ciencias del Aprendizaje y ConstructivismoBernabe Soto
 
WebDAV, ATOM, and REST
WebDAV, ATOM, and RESTWebDAV, ATOM, and REST
WebDAV, ATOM, and RESTTaisuke Yamada
 
Art
ArtArt
ArtCreyouway
 
Grupos
GruposGrupos
GruposMc Remiix
 
Introduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutIntroduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutTaisuke Yamada
 
ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴Taisuke Yamada
 
DIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesDIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesTaisuke Yamada
 
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -Taisuke Yamada
 
Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Taisuke Yamada
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourTaisuke Yamada
 
Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Taisuke Yamada
 
Getting Started with SDR in Python
Getting Started with SDR in PythonGetting Started with SDR in Python
Getting Started with SDR in PythonTaisuke Yamada
 
VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!Taisuke Yamada
 
InfiniBand on Debian
InfiniBand on DebianInfiniBand on Debian
InfiniBand on DebianTaisuke Yamada
 
Infinite Debian - Platform for mass-producing system every second
Infinite Debian - Platform for mass-producing system every secondInfinite Debian - Platform for mass-producing system every second
Infinite Debian - Platform for mass-producing system every secondTaisuke Yamada
 
Invitation to Kernel Parameter and Code Exploration
Invitation to Kernel Parameter and Code ExplorationInvitation to Kernel Parameter and Code Exploration
Invitation to Kernel Parameter and Code ExplorationTaisuke Yamada
 
Charity Items from Debian JP Project
Charity Items from Debian JP ProjectCharity Items from Debian JP Project
Charity Items from Debian JP ProjectTaisuke Yamada
 

More Related Content

Viewers also liked

Evaluación de procesos y productos educativos
Evaluación de procesos y productos educativosEvaluación de procesos y productos educativos
Evaluación de procesos y productos educativosBernabe Soto
 
Taller: Videotutoriales USMP Virtual
Taller: Videotutoriales USMP VirtualTaller: Videotutoriales USMP Virtual
Taller: Videotutoriales USMP VirtualBernabe Soto
 
La histora en la era digital: futuro, investigación y cambio.
La histora en la era digital: futuro, investigación y cambio. La histora en la era digital: futuro, investigación y cambio.
La histora en la era digital: futuro, investigación y cambio. Bernabe Soto
 
Diseño de Experiencias Educativas
Diseño de Experiencias EducativasDiseño de Experiencias Educativas
Diseño de Experiencias EducativasBernabe Soto
 
Procesamiento de información
Procesamiento de información Procesamiento de información
Procesamiento de información Bernabe Soto
 
Ciencias del Aprendizaje y Constructivismo
Ciencias del Aprendizaje y ConstructivismoCiencias del Aprendizaje y Constructivismo
Ciencias del Aprendizaje y ConstructivismoBernabe Soto
 
WebDAV, ATOM, and REST
WebDAV, ATOM, and RESTWebDAV, ATOM, and REST
WebDAV, ATOM, and RESTTaisuke Yamada
 
Introduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutIntroduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutTaisuke Yamada
 

Viewers also liked (10)

Evaluación de procesos y productos educativos
Evaluación de procesos y productos educativosEvaluación de procesos y productos educativos
Evaluación de procesos y productos educativos
 
Taller: Videotutoriales USMP Virtual
Taller: Videotutoriales USMP VirtualTaller: Videotutoriales USMP Virtual
Taller: Videotutoriales USMP Virtual
 
La histora en la era digital: futuro, investigación y cambio.
La histora en la era digital: futuro, investigación y cambio. La histora en la era digital: futuro, investigación y cambio.
La histora en la era digital: futuro, investigación y cambio.
 
Diseño de Experiencias Educativas
Diseño de Experiencias EducativasDiseño de Experiencias Educativas
Diseño de Experiencias Educativas
 
Procesamiento de información
Procesamiento de información Procesamiento de información
Procesamiento de información
 
Ciencias del Aprendizaje y Constructivismo
Ciencias del Aprendizaje y ConstructivismoCiencias del Aprendizaje y Constructivismo
Ciencias del Aprendizaje y Constructivismo
 
WebDAV, ATOM, and REST
WebDAV, ATOM, and RESTWebDAV, ATOM, and REST
WebDAV, ATOM, and REST
 
Art
ArtArt
Art
 
Grupos
GruposGrupos
Grupos
 
Introduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutIntroduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and Dracut
 

More from Taisuke Yamada

ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴Taisuke Yamada
 
DIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesDIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesTaisuke Yamada
 
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -Taisuke Yamada
 
Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Taisuke Yamada
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourTaisuke Yamada
 
Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Taisuke Yamada
 
Getting Started with SDR in Python
Getting Started with SDR in PythonGetting Started with SDR in Python
Getting Started with SDR in PythonTaisuke Yamada
 
VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!Taisuke Yamada
 
Infinite Debian - Platform for mass-producing system every second
Infinite Debian - Platform for mass-producing system every secondInfinite Debian - Platform for mass-producing system every second
Infinite Debian - Platform for mass-producing system every secondTaisuke Yamada
 
Invitation to Kernel Parameter and Code Exploration
Invitation to Kernel Parameter and Code ExplorationInvitation to Kernel Parameter and Code Exploration
Invitation to Kernel Parameter and Code ExplorationTaisuke Yamada
 
Charity Items from Debian JP Project
Charity Items from Debian JP ProjectCharity Items from Debian JP Project
Charity Items from Debian JP ProjectTaisuke Yamada
 
mod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpdmod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpdTaisuke Yamada
 
The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)
The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)
The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)Taisuke Yamada
 
The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)
The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)
The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)Taisuke Yamada
 
Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -Taisuke Yamada
 
The Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LTThe Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LTTaisuke Yamada
 

More from Taisuke Yamada (17)

ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴
 
DIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesDIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 Minutes
 
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
 
Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an Hour
 
Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線
 
Getting Started with SDR in Python
Getting Started with SDR in PythonGetting Started with SDR in Python
Getting Started with SDR in Python
 
VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!
 
InfiniBand on Debian
InfiniBand on DebianInfiniBand on Debian
InfiniBand on Debian
 
Infinite Debian - Platform for mass-producing system every second
Infinite Debian - Platform for mass-producing system every secondInfinite Debian - Platform for mass-producing system every second
Infinite Debian - Platform for mass-producing system every second
 
Invitation to Kernel Parameter and Code Exploration
Invitation to Kernel Parameter and Code ExplorationInvitation to Kernel Parameter and Code Exploration
Invitation to Kernel Parameter and Code Exploration
 
Charity Items from Debian JP Project
Charity Items from Debian JP ProjectCharity Items from Debian JP Project
Charity Items from Debian JP Project
 
mod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpdmod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpd
 
The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)
The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)
The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)
 
The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)
The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)
The CAcert Project - An Invitation to CAcert ATE at OSC/Tokyo 2011 (JP)
 
Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -
 
The Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LTThe Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LT
 

Recently uploaded

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DayH2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DaySri Ambati
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfRankYa
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfPrecisely
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 

Recently uploaded (20)

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo DayH2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
H2O.ai CEO/Founder: Sri Ambati Keynote at Wells Fargo Day
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdf
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 

201012 cacert-at-tokyodebian

  • 1. 71 Debian 2010 12 1 CAcert 1.1 CAcert CAcert 2002 2003 CAcert Inc. S/MIME etc CAcert OS VeriSign *1 CAcert 1. 2. 1. 2. CAcert 1. 2. CAcert CA CAcert CAcert CAcert CAcert Inc. *1 1
  • 2. 1. 2. 100pt 3. 100pt Web of Trust 1.2 CAcert - CAcert https://cacert.org/ CAcert Asurer ≥0 Member ≥1 Member Member Root ≥ 50 Assured Member ≥ 100 Prospective Assurer ≥ 100 + Assurer 10 0-2EP ≥ 100 + 10EP + Assurer 15 ≥ 100 + 20EP + Assurer 20 ≥ 100 + 30EP + Assurer 25 ≥ 100 + 40EP + Assurer 30 ≥ 100 + 50EP + Assurer 35 Experienced Assurer / Senior Assurer 1 100pt Assurance Point Assurer 2EP 10EP/20EP/... Experience Point 25 20 100pt 100pt Assurer *2 *2 https://cats.cacert.org/ 2
  • 3. 1 Assurer Experienced / Senior Assurer Experienced Assurer Senior Assurer Experienced Assurer 50EP 100pt 25 SeniorAssurer 1. Experienced Assurer 2. co-auditor*3 3. *4 ATE(Assurer Training Event) 4. CARS - CAcert Assurer Reliable Statement CAcert Senior Assurer CAcert Senior Assurer 1.3 *3 Assurance Office Experienced Assurer *4 3
  • 4. Assurer a 1. b 2. CAP(CAcert Assurance Program) Form c 3. 4. CCA(CAcert Community Agreement) a / b https://secure.cacert.org/cap.php c Member 1. CAcert 2. a 3. CAP Form OK a https://secure.cacert.org/cap.php - CAcert GPG 1. Assurer CCA Assurer CAcert a CAcert Assurer b 1000EUR 2010/12 10 c COD - CAcert Official Document 2. Member 3. Assurer Member CAP Form 4. Assurer a CCA b c cacert.org d e f 5. a b CAcert 4
  • 5. dispute *5 Assurer c CAP Form d e PhD 6. 7. CAP Form Assurer Assurer CAP Form 1. CAP Form 2. cacert.org CAP Form 3. CAP Form ←←← mOm JK support@cacert.org 1.4 GPG CAcert CAP Form Assurer *6 support@cacert.org 1.5 CAcert CAcert *5 *6 CAP Form 5
  • 6. 1. Event Office (http://wiki.cacert.org/Officers) 2. CAcert EventOffier 3. *7 4. Assurer Assurer 5. 6. 7. 8. EventOfficer Event Office CAcert 1.5.1 CAcert Event Office Event Organiser 1 Event Office Experienced Assurer 3+ Assurer 2+ EA CAP Form EA 2+ 2 CAcert 1+ 1+ 1+ 0+ PC 1+ Knoppix 1 CAP Form 10+ 1 3 CAcert *7 6
  • 7. Assurer 1 CAP Form 1p, 30+ Assurer CAP Form 1p, 20+ Assurer CCA (4p) 50+ Assurance CCA ( 1 Assurance Policy (8p) 1+ Assurance Handbook (29p) 1+ Root Distribution License (1p) 1 Dispute Resolution Policy (6p) 1 Practice On Names (4p) 1+ Assurer Practice On ID Checking (4p) 1+ Assurer PoJAM (4p) 1 CPS(28p) 1 0+ CAcert Office IR 4 CAcert CCA(CAcert Community Agreement) 1.5.2 1. CAcert 3-5 *8 CAP Form 2. Assurer Member( ) Member 3. Assurer Experience Point Assurance *8 Assurer 7
  • 8. 2 CAcert Assurer 1.6 CAcert CAcert Wiki CAcert COD (CAcert Official Document) 8
  • 9. COD1 Policy on Policy (PoP) POLICY IETF COD2 Configuration-Control DRAFT DOC/HW/SW Specification(CCS) COD3 CAcert Official Docu- ments Policy (COD) COD4 Non-Related Persons – Disclaimer and Licence COD14(Root Distribution License) (NRP-DaL) COD5 Privacy Policy (PP) POLICY COD6 Certification Practice DRAFT Statement (CPS) COD7 Dispute Resolution POLICY CAcert Policy (DRP) COD8 Security Policy (SP) DRAFT COD9 CAcert Community CAcert Agreement (CCA) COD10 NA COD11 Oranisation Assurance POLICY CAcert Policy(OAP) COD12 NA COD13 Assurance Policy (AP) POLICY COD14 Root Distribution Li- DRAFT CAcert cense (RDL) - Assurer Handbook WiP(Work in Progress - ) DRAFT POLICY 2010 CAcert Member/Assurer 9
  • 10. 3 CAcert COD[0-9]+ PoP/CCS/CCA/PP/DRL/... DRP( )/CCS( )/CCA /Handbook CAcert Inc. 4 CAcert REF: http://wiki.cacert.org/Officers CAcert Wiki 10
  • 11. support@cacert.org ML 1.7 CAcert *9 Assurer CAcert CAcert 1.8 CAcert 1. Using Secure DNS to Associate Certificates with Domain Names For TLS https://datatracker.ietf.org/doc/draft-ietf-dane-protocol/ 2. - DNS - KIDNS (Keys in DNS) - http://dnsops.jp/bof/20101125/201011-DNSOPS-KIDNSv5.pdf CERT/TLSA SSH/PGP *10 CA 10 DNSSEC *9 CAcert Inc. *10 GnuPG 11
  • 12. 12
  • 13. Debian 2010 12 18 1 Debian 13