Author Archives: Duane

2005 – The year of the Assurer!

Currently as many of you know there is some issues with our current system, and one big way to over come the entire problem is to have as many people with 50 or more points in the system, to us it would be beneficial to have everyone with 100 or more, but for the most part 50 would satisfy most of the current issues people have with including our root cert.

Step one is to raise awareness of the situation, and this will be executed via a mass mail of all unassured people in the CAcert database, the notification will be along the lines that we have been given indications that we could be better included in Ubuntu, and perhaps many other linux distributions if we stop issuing unassured server certificates. If everyone is serious about us being included in browsers and given the opportunity to be assured (via a distributed world tour?) no one should have a problem with this in theory (and everything works in theory).

Step two will be to actually get people out and about, and assuring people en mass. While CAcert doesn’t have unlimited amounts of funding, CAcert is a cash positive, self sustaining entity which gains funds from donations, memberships and google ads displayed on the website. Utilising these funds or gaining further donations to tip the balance of assurers in areas should be something considered a high priority.

Step three of course is phasing out the ability for people with less then 50 points from being issued a server certificate from our main root certificate, if at all. This was one of the original goals, while we don’t yet have any sort of critical mass, this has brought the issue to the forefront and will only serve to increase the overall security of the system, not to mention that this will also gain us a lot more credibility and will be one less barrier to inclusion.

I’m sure there is other things we will need to do, and as always feedback is appreciated.

Inclusion in the Ubuntu Distribution

I’ve spoken to some very influencal people of late, one of whom happened to be Mark Shuttleworth today at the Ubuntu down under conference. He had one particular concern about control of domain certificates, and that he didn’t feel comfortable including our current root certificate at present until we either stopped issuing them under our present root (ie setup another root certificate for assured certificates, or start issuing unassured certificates from a new root), or alternatively we can just not issue them to unassured people.

Also worth mentioning that at one point webtrust certification was mentioned but he wasn’t really that concerned about it, he was more worried about the security (or insecurity) of control of domain type certificates.

This isn’t the first time that it’s been suggested that we alter how many root certs we operate and under what conditions people are allowed to issue from which certificate, at this point in time it’s a difficult decision to make and we’re looking to the community for feedback on the issue (as this will effect a lot of people no matter what happens) and what the best course of action to take is.

Comments on this are important!

* one possible solution might be to issue a new root cert signed by the current root cert (since this issue only effects server certificates) that way it should work with least amount of impact to most/all people.

Conference – Ubuntu Downunder Developers Conference

http://udu.wiki.ubuntu.com/UbuntuDownUnder/ UDU will be held at the Vibe Hotel in Rushcutters Bay (100 Bays Water Rd) from Monday April 25 to Saturday April 30, 2005. There will be a few assurers in attendance.

Conference – Linux.conf.au 2005

linux.conf.au is Australia’s national Linux conference. lca2005 will be held at the Australian National University in Canberra from Monday April 18 to Saturday April 23, 2005. There will be a few assurers in attendance.

Conference – USENIX 2005

USENIX Technical Conference is on again this year in Anaheim April 10th to the 15th. Last year’s event proved very sucessful for CAcert and the user numbers swelled from 5,000 to 10,000 in a matter of weeks after the conference had ended. 3 CAcert board members will be in attendance as well as a number of people assured last year.

Conference – Easterhegg

http://easterhegg2005.hamburg.ccc.de March 25-28, Hamburg, Germany.

Conference – CeBIT 2005

March 10-16, Hannover, Germany. We assured roughly 700 (!!) people! The booth was crowded every day as CAcert was mentioned on heise newsticker (ger).

Conference – Dutch Perl Workshop 2005

http://workshop.perlpromo.nl/ February 25, Arnhem, Netherlands. Enough CAcert assurers will be there to gain 100 points in one day.

Usergroup – Wireless Leiden monthly open meeting

Wireless Leiden – 8/9 Januari. Burcht in Leiden, the Netherlands. Monthly meeting for users and interested people. Meet the Wireless Leiden people. Assurers active after the meeting.

Conference – 21C3 Berlin, Germany

21C3 27.-29. December 2004, BCC, Berlin, Germany Ask for Ralf Neumann, Kai Richter or Henning Heedfeld in the amateur radio section on level C of the congress area to assure you.