aruba
|
|
response 1 of 140:
| 
Apr 16 01:55 UTC 2001 |
For the record, here is our current ID policy.
This is quoted from the minutes for the September 27, 1995 board meeting;
the relevant parts are sections 2 and 5. The policy was intended for
verification of non-members to use outbound Internet services, but as I
understand it, the ID criteria also apply to verification of members.
T. Verification Policy - John Remmers passed around a verification policy
which he had formulated. A few words were modified, but there was a long
discussion about whether it should be possible for trusted people, such
as staff, to relay information to the verifier. Ultimately, the wording
in this respect was left intact.
Here is the final wording of the motion:
MOTION: (remmers, steve)
(1) Anyone requesting access to Grex services for which verification
is required shall present proof of his or her identity. Members and
non-members will be held to the same verification criteria. In order
to be considered verified, a person shall submit a photocopy of an
item of acceptable identification and a signed letter requesting the
access.
(2) The acceptable items of identification are government-issued ID,
school-issued ID, library-issued ID, or a personal check written to
Cyberspace Communications Inc. by the person requesting access. To be
accepted, the item must be currently valid (i.e. not expired), must
identify the person by name, and must include additional identifying
information other than a photograph (such as home address,
passport number, or name of school).
(3) There shall be one individual, referred to hereafter as "verifier",
who is responsible for accepting verification requests and ID,
notifying the appropriate staff member(s) so that access may be
granted if the criteria of (1) and (2) are met, and notifying the
requester if the ID is not acceptable.
(4) The board shall solicit volunteers and appoint the verifier. The
term of office is one year and is renewable. Any verified user is
eligible for the post of verifier. If a volunteer for the post is not
currently verified, then for the purpose of gaining eligibility he or
she may present identification to the board that meets the criteria
enumerated in (2).
(5) In the case of personal checks submitted to the treasurer of
Cyberspace Communications Inc., the treasurer may also verify a user,
provided the check meets the criteria of (2) and is accompanied by a
signed letter as required in (1).
(6) An individual whose request for verification is denied may
appeal the decision to the board. The board's ruling on appeals
is final.
PASSED: 7-0
|
aruba
|
|
response 2 of 140:
|
Apr 16 01:59 UTC 2001 |
We have never enforced the "signed letter" criterion. We added this policy
for institutional members:
6. Institutional Membership Requirements: Much discussion, the following
conclusion:
Motion by other: In addition to those applicable requirements for individual
memberships, the requirements for institutional Grex memberships shall be:
1) A designated contact person who shall be responsible for all use of the
member account.
2) Verifiable personal identification for the designated contact person
(subject to the same ID requirements as individual memberships)
3) Renewal of institutional memberships requires an update of the contact ID.
Seconded by aruba.
Motion carries, 5,0,0
|
other
|
|
response 3 of 140:
|
Apr 16 07:23 UTC 2001 |
In item 254, response 50, Russ makes a very good suggestion. If we adapt the
policy to allow for the following, it might make things much smoother:
Any user applying for an institutional membership may submit a letter with
their check stating that they waive the outbound internet accesses which
normally accompany membership, and in such a case, validation requirements
will be waived.
Otherwise, anyone wanting outbound access *must* be validated, period. If
you don't want to be identified, you don't get to use Grex as your access
point to the internet.
|
