Subversion Repositories oidplus

Rev

Rev 1371 | Go to most recent revision | Blame | Compare with Previous | Last modification | View Log | RSS feed

  1. <!DOCTYPE html>
  2.  
  3. <html lang="en">
  4.  
  5. <head>
  6.         <title>Procedural documentation related to privacy</title>
  7.         <style>
  8.         h2 {
  9.                 font-size:large !important;
  10.                 text-decoration: underline !important;
  11.                 font-weight: bold !important;
  12.         }
  13.         h3 {
  14.                 font-size:medium !important;
  15.                 text-decoration: underline !important;
  16.                 font-style: italic !important;
  17.         }
  18.         </style>
  19. </head>
  20.  
  21. <body>
  22.         <h1>Procedural documentation related to privacy</h1>
  23.         <p><em>Revision: 25 September 2023</em></p>
  24.         <p><strong><em>Important</em></strong><em>: This document is written by ViaThinkSoft (the developer of the software "OIDplus") and gives general information on how OIDplus works regarding privacy-related topics. Since OIDplus is a web application that can be downloaded, installed, and operated by anyone on their server systems, this document DOES NOT describe how the owners/administrators of this particular installation of OIDplus are handling your data. Therefore, the owner of this system should provide an additional/individual privacy statement.</em></p>
  25.  
  26.         <a id="terminology"></a><h2>Parties / Terminology</h2>
  27.         <p><strong>ViaThinkSoft</strong> is the developer of the software solution "OIDplus".</p>
  28.         <p><strong>OIDplus</strong> is a software solution to organize, manage and publish information about <strong>Object Identifiers</strong> (hereinafter referred to as OIDs) and their owners (hereinafter referred to as <strong>Registration Authority</strong> or <strong>RA</strong>). It can be downloaded and installed on any server. A particular installation of OIDplus is called <strong>OIDplus instance</strong> or <strong>OIDplus system</strong>. Operators of OIDplus instances are usually software developers, workgroups, companies, or other organizations, hereinafter referred to as <strong>system owner</strong>. A <strong>system administrator</strong> is a person who manages and maintains the OIDplus software and is usually also the same person who manages the server's hardware and software.</p>
  29.         <p><strong>Object Identifiers</strong> are organized in a hierarchical structure where Registration Authorities are delegating OIDs underneath the OIDs they are managing, to other Registration Authorities. In the context of a specific Registration Authority and OID, the "<strong>Superior RA</strong>" is the Registration Authority that has delegated the root OID of a specific Registration Authority. However, the statements about "Superior Registration Authorities" in this document do only apply if the Superior Registration Authority is using OIDplus to delegate the OID.</p>
  30.  
  31.         <a id="server_client_side"></a><h2>Definition of server-side and client-side</h2>
  32.         <p>OIDplus is a web application written in the programming languages PHP (running on the server side) and HTML/JavaScript (running on the client side).</p>
  33.  
  34.         <h3>server-side</h3>
  35.         <p>The PHP scripts of OIDplus are processed through a PHP script interpreter running on top of a web server software ("HTTP web server"), for example, "Apache" or "Nginx". The actual data of OIDplus (OIDs, RAs, &hellip;) is stored in a DBMS (Database Management System) e.g. "MySQL", "MariaDB" or "PostgreSQL". The DBMS is usually installed on the same server machine where PHP/Apache is installed, but it can be installed on any machine by the server administrator.</p>
  36.  
  37.         <h3>client-side</h3>
  38.         <p>While the user browses OIDplus, the server side serves HTML and JavaScript content to the client computer. Using web browser software (like "Chrome" or "Firefox"), these contents are processed and displayed on the screen. Various JavaScript scripts are either required to run OIDplus or are improving the user experience, e.g. by reloading OID descriptions without reloading the whole page while the user browses OIDplus. There might be a few external JavaScripts included (e.g. reCaptcha), which are described at the end of the document.</p>
  39.  
  40.         <a id="scope"></a><h2>Scope of this document</h2>
  41.         <p>This document contains information about the OIDplus software only. It is independent of the behavior of the client-side software (web browser, Operating system, firewalls, &hellip;), independent from the behavior of hardware (network routers or firewalls, &hellip;), independent from the behavior of the server-side software (Apache, PHP, MySQL/MariaDB/PostgreSQL/&hellip;, Operating system, etc.) and the practices how the system administrator is operating the server software, stores log files, manages firewalls, etc.</p>
  42.  
  43.         <a id="oid_information"></a><h2>OID information</h2>
  44.         <p>The main purpose of OIDplus is to show and manage information on OID information.</p>
  45.         <p>Some attributes of Object Identifiers (like ASN.1 identifiers) can only be changed by the Superior Registration Authority and not by the Registration Authority of that OID. On the other hand, some other information (like the title and description) can only be changed by the Registration Authority owning the OID and not by the Superior Registration Authority. The system administrator can edit all information.</p>
  46.  
  47.         <h3>Hidden OID information</h3>
  48.         <p>A superior Registration Authority can set the "hidden" flag to an OID they delegate. This means the OID and all its subordinate OIDs are invisible to the public. However, the public can see the existence of hidden OIDs by a notice "<em>XX OIDs are hidden. Log in to see them</em>".</p>
  49.         <p>The system administrator can see all OIDs, even if they are hidden.</p>
  50.         <p>An owner of an OID can see all OIDs which are directed to his root OID, even if some of them are hidden.</p>
  51.         <p>If you are an <strong>owner of an OID</strong> and want to make your OID hidden from the public, please contact your <strong>superior Registration Authority</strong> (preferential) or the <strong>system administrator</strong> and ask them to mark your OID as hidden. Please note that this will also hide all OIDs that you delegate to yourself or other Registration Authorities.</p>
  52.  
  53.         <h3>Overview: Managed information about OIDs:</h3>
  54.         <table class="table">
  55.                 <thead>
  56.                         <tr>
  57.                                 <td valign="top" width="25%"><strong>Attribute:</strong></td>
  58.                                 <td valign="top" width="25%"><strong>Can only be changed by:</strong></td>
  59.                                 <td valign="top" width="25%"><strong>If not marked "hidden", visible to:</strong></td>
  60.                                 <td valign="top" width="25%"><strong>If marked "hidden", visible to:</strong></td>
  61.                         </tr>
  62.                 </thead>
  63.                 <tbody>
  64.                         <tr>
  65.                                 <td valign="top">Numeric Identifier<br>(can only be defined during creation and never be changed again)</td>
  66.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  67.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  68.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  69.                         </tr>
  70.                         <tr>
  71.                                 <td valign="top">Alphanumeric identifier<br>(for ASN.1 notation)</td>
  72.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  73.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  74.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  75.                         </tr>
  76.                         <tr>
  77.                                 <td valign="top">Unicode label<br>(for IRI notation)</td>
  78.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  79.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  80.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  81.                         </tr>
  82.                         <tr>
  83.                                 <td valign="top">Registration Authority</td>
  84.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  85.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  86.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  87.                         </tr>
  88.                         <tr>
  89.                                 <td valign="top">Comment</td>
  90.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  91.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  92.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  93.                         </tr>
  94.                         <tr>
  95.                                 <td valign="top">"Hidden" flag</td>
  96.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  97.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  98.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  99.                         </tr>
  100.                         <tr>
  101.                                 <td valign="top">Title</td>
  102.                                 <td valign="top">Registration Authority<br>System administrator</td>
  103.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  104.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  105.                         </tr>
  106.                         <tr>
  107.                                 <td valign="top">Description</td>
  108.                                 <td valign="top">Registration Authority<br>System administrator</td>
  109.                                 <td valign="top">Public<br>Registration Authority<br>Superior Registration Authority<br>System administrator</td>
  110.                                 <td valign="top">Superior Registration Authority<br>System administrator</td>
  111.                         </tr>
  112.                 </tbody>
  113.         </table>
  114.  
  115.         <a id="ra_information"></a><h2>Registration Authority information</h2>
  116.         <p>The information about Registration Authorities owning OIDs can be seen publicly. A Registration Authority can manage their contact data in the OIDplus system (login area) and mark their information as "private" to limit the information visible to the public.</p>
  117.         <p>The Following Registration Authority information is always displayed (even if marked "private"):</p>
  118.  
  119.         <h3>Overview: Managed information about Registration Authorities:</h3>
  120.         <table class="table">
  121.                 <thead>
  122.                         <tr>
  123.                                 <td valign="top" width="25%"><strong>Attribute:</strong></td>
  124.                                 <td valign="top" width="25%"><strong>Can only be changed by:</strong></td>
  125.                                 <td valign="top" width="25%"><strong>If not marked "private", visible to:</strong></td>
  126.                                 <td valign="top" width="25%"><strong>If marked "private", visible to:</strong></td>
  127.                         </tr>
  128.                 </thead>
  129.                 <tbody>
  130.                         <tr>
  131.                                 <td valign="top">Email-Address</td>
  132.                                 <td valign="top">Registration Authority</td>
  133.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  134.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  135.                         </tr>
  136.                         <tr>
  137.                                 <td valign="top">Name</td>
  138.                                 <td valign="top">Registration Authority</td>
  139.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  140.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  141.                         </tr>
  142.                         <tr>
  143.                                 <td valign="top">Organization</td>
  144.                                 <td valign="top">Registration Authority</td>
  145.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  146.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  147.                         </tr>
  148.                         <tr>
  149.                                 <td valign="top">Office</td>
  150.                                 <td valign="top">Registration Authority</td>
  151.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  152.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  153.                         </tr>
  154.                         <tr>
  155.                                 <td valign="top">Personal name</td>
  156.                                 <td valign="top">Registration Authority</td>
  157.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  158.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  159.                         </tr>
  160.                         <tr>
  161.                                 <td valign="top">Privacy flag</td>
  162.                                 <td valign="top">Registration Authority</td>
  163.                                 <td valign="top">Registration Authority<br>System administrator</td>
  164.                                 <td valign="top">Registration Authority<br>System administrator</td>
  165.                         </tr>
  166.                         <tr>
  167.                                 <td valign="top">Street</td>
  168.                                 <td valign="top">Registration Authority</td>
  169.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  170.                                 <td valign="top">Registration Authority<br>System administrator</td>
  171.                         </tr>
  172.                         <tr>
  173.                                 <td valign="top">ZIP/Town</td>
  174.                                 <td valign="top">Registration Authority</td>
  175.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  176.                                 <td valign="top">Registration Authority<br>System administrator</td>
  177.                         </tr>
  178.                         <tr>
  179.                                 <td valign="top">Country</td>
  180.                                 <td valign="top">Registration Authority</td>
  181.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  182.                                 <td valign="top">Registration Authority<br>System administrator</td>
  183.                         </tr>
  184.                         <tr>
  185.                                 <td valign="top">Phone</td>
  186.                                 <td valign="top">Registration Authority</td>
  187.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  188.                                 <td valign="top">Registration Authority<br>System administrator</td>
  189.                         </tr>
  190.                         <tr>
  191.                                 <td valign="top">Mobile</td>
  192.                                 <td valign="top">Registration Authority</td>
  193.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  194.                                 <td valign="top">Registration Authority<br>System administrator</td>
  195.                         </tr>
  196.                         <tr>
  197.                                 <td valign="top">Fax</td>
  198.                                 <td valign="top">Registration Authority</td>
  199.                                 <td valign="top">Public<br>Superior Registration Authority<br>Registration Authority<br>System administrator</td>
  200.                                 <td valign="top">Registration Authority<br>System administrator</td>
  201.                         </tr>
  202.                 </tbody>
  203.         </table>
  204.  
  205.         <a id="ra_invitation"></a><h2>Invitation of Registration Authorities</h2>
  206.         <p>When an OID is created by a Registration Authority or by the system administrator, the owner of the OID will be defined by an email address (which will be shown publicly). Therefore, it is possible to own an OID, even if you are not registered in the OIDplus system.</p>
  207.         <p>When the OID is created and the Registration Authority with such an email address does not exist     in the OIDplus system, the creator can instruct the system to send an invitation. In that case, an email will be sent to this email address, allowing them to click a link to register to the OIDplus system, so that they can add more contact data as well as be able to delegate and edit OID information.</p>
  208.         <p>Currently, a Registration Authority cannot register themselves using the regular login method. (They can register themselves if they are using some alternative login methods as described below). Using the regular login method, they need an invitation from the system administrator or their superior Registration Authority to be able to register to the OIDplus system. (Note: To resend an invitation, the system administrator or superior Registration Authority needs to open your OID and click "Invite RA to join OIDplus" in order to send you an email).</p>
  209.         <p>In addition to the invitation system, the system administrator can create Registration Authority accounts without email address verification.</p>
  210.  
  211.         <a id="oidinfo_publishing"></a><h2>Publishing RAs/OIDs to oid-info.com</h2>
  212.         <p>oid-info.com is a web page that collects and displays information about OIDs, like a Wiki. OIDplus contains features to submit data from its database to oid-info.com</p>
  213.         <p>There are two possibilities:</p>
  214.         <ol>
  215.                 <li>Manual transfer: The system administrator can create an XML file that contains OID and Registration Authority information (only the parts which can be seen by the public anyway) and can upload this XML file to oid-info.com</li>
  216.                 <li>If the OIDplus system is registered to ViaThinkSoft and the OID-info.com transfer is enabled (see below), the OIDplus system will transmit XML data containing RA/OID information through an encrypted interface to ViaThinkSoft, and ViaThinkSoft after regular manual check submits the data to the oid-info.com administrator.</li>
  217.         </ol>
  218.  
  219.         <a id="systemid"></a><h2>Unique system ID</h2>
  220.         <p>During the initial setup, a public/private-key-pair will be created which can be used for various purposes, e.g. to encrypt data between OIDplus and ViaThinkSoft if the "system registration" service is used (see below) or to sign OID-IP (previously OID-WHOIS) responses.</p>
  221.         <p>From this public key, a unique system ID will be derivated. The unique system ID and the public key can be seen on the setup screen.</p>
  222.  
  223.         <a id="system_registration"></a><h2>System registration and automatic publishing to oid-info.com</h2>
  224.         <p>During initial setup, the system administrator can choose between the following options:</p>
  225.         <table class="table">
  226.                 <thead>
  227.                         <tr>
  228.                                 <td valign="top"><strong>Privacy Level</strong></td>
  229.                                 <td valign="top"><strong>Meaning</strong></td>
  230.                         </tr>
  231.                 </thead>
  232.                 <tbody>
  233.                         <tr>
  234.                                 <td valign="top">0</td>
  235.                                 <td valign="top">Register to directory service and automatically publish RA/OID data at oid-info.com</td>
  236.                         </tr>
  237.                         <tr>
  238.                                 <td valign="top">1</td>
  239.                                 <td valign="top">Only register to directory service</td>
  240.                         </tr>
  241.                         <tr>
  242.                                 <td valign="top">2</td>
  243.                                 <td valign="top">Hide system</td>
  244.                         </tr>
  245.                 </tbody>
  246.         </table>
  247.         <p>This setting can always be changed in the administrator login/control panel.</p>
  248.  
  249.         <h3>Registering the system to the directory service (options 0 and 1)</h3>
  250.         <p>The registration of the OIDplus system has various advantages:</p><!-- please keep in sync with plugins/viathinksoft/adminPages/120_registration/info.html document -->
  251.         <ul>
  252.                 <li>The public key of the OIDplus instance will be published to the ViaThinkSoft web directory so that users can check the integrity of the data (e.g. signed OID-IP/OID-WHOIS requests).</li>
  253.                 <li>Since the 31-bit System ID can have hash conflicts, ViaThinkSoft will make sure that the System ID is only used by this OIDplus instance (it will force other OIDplus systems with the same system ID to change their IDs).</li>
  254.                 <li>ViaThinkSoft can acknowledge the system name, administrator email address, and OID root arcs. Therefore, the OIDplus instance can be found using Referral WHOIS.</li>
  255.                 <li>The administrator can optionally enable the automatic publishing of the public OID information to the repository oid-info.com.</li>
  256.                 <li>If the root OID(s) are approved by ViaThinkSoft (it will be manually verified that the root OIDs belong to the system owner), a feature will be unlocked which can be used to compare and import OIDs from oid-info.com into this OIDplus instance.</li>
  257.                 <li>The OIDplus version will be reported to ViaThinkSoft. If a severe bug or security vulnerability is affecting this OIDplus instance, ViaThinkSoft can warn the administrator via email.</li>
  258.                 <li>The directory service will automatically create an X.509 security certificate for this OIDplus instance (NOT an SSL certificate!) which can be used for various verifications.</li>
  259.         </ul>
  260.         <p>If privacy level option 0 or 1 was chosen, the OIDplus system will regularly contact the ViaThinkSoft server through a secure connection and send the following information:</p>
  261.         <ul>
  262.                 <li>Privacy level (0, 1, or 2)</li>
  263.                 <li>System ID</li>
  264.                 <li>Public Key</li>
  265.                 <li>Current URL</li>
  266.                 <li>Administrator email address</li>
  267.                 <li>System title</li>
  268.                 <li>List of OID roots that this system is sending</li>
  269.                 <li>The version of the system (SVN revision)</li>
  270.                 <li>Installation type (SVN snapshot, SVN working copy, or GIT working copy)</li>
  271.         </ul>
  272.         <p>ViaThinkSoft will store this data internally and publish parts into the public directory service located at <a href="https://oidplus.viathinksoft.com/directory/" target="_blank">https://oidplus.viathinksoft.com/directory/</a>:</p>
  273.         <p>The public record contains:</p>
  274.         <ul>
  275.                 <li>System ID</li>
  276.                 <li>Public key</li>
  277.                 <li>Current URL</li>
  278.         </ul>
  279.         <p>The other information will stay on the ViaThinkSoft internal database and will not be shared with other parties.</p>
  280.         <p>If the system administrator enabled this option and wants to revoke the permission, the system administrator has to change the privacy level in the administrator login/control panel. The system will automatically contact the ViaThinkSoft server again and performs the deletion of all data.</p>
  281.         <p>Please note that the deletion of the record in the directory service does not delete RA/OID information that is already submitted at oid-info.com (if option 0 was chosen). To delete this data, the system administrator needs to contact the OID Repository Webmaster at <a class="spamspan" href="mailto:admin@oid-info.com">admin@oid-info.com</a></p>
  282.  
  283.         <h3>Publish RA/OID data at oid-info.com (option 0)</h3>
  284.         <p>If privacy level option 0 is chosen, the system regularly contacts the ViaThinkSoft server through a secure connection and sends the public RA/OID data. ViaThinkSoft will store this data and redirect it to the OID Repository Webmaster who will review the data and eventually submit it to the public repository oid-info.com</p>
  285.         <p>If the system administrator enabled this option and wants to revoke the permission, the system administrator has to change the privacy level in the administrator login/control panel to option 1 or 2 (to avoid that data being sent again). To remove already submitted OIDs, the system administrator needs to contact the OID Repository Webmaster at <a class="spamspan" href="mailto:admin@oid-info.com">admin@oid-info.com</a></p>
  286.  
  287.         <h3>Hide system (option 2)</h3>
  288.         <p>If privacy level option 2 was chosen, the system will neither contact ViaThinkSoft, nor oid-info.com.</p>
  289.  
  290.         <a id="logfiles"></a><h2>Log files</h2>
  291.  
  292.         <h3>Logs by OIDplus</h3>
  293.         <p>OIDplus manages log entries for specific events like logins, RA/OID modifications, creating and deletion of OIDs, etc.</p>
  294.         <p>These log messages are stored in the DBMS only.</p>
  295.         <p>All log events are visible to the system administrator.</p>
  296.         <p>Some events are visible to the Registration Authority and/or the Superior Registration Authority.</p>
  297.         <p>Log events may show the IP addresses of the computer that was connected to the OIDplus system and the email address if the Registration Authority was logged in using their credentials.</p>
  298.         <p>OIDplus does not provide a function to delete log events. A deletion must be done in the database directly, e.g. using a database client like phpMyAdmin.</p>
  299.  
  300.         <h3>Logs by host software, firewalls, etc.</h3>
  301.         <p>Besides logs created by OIDplus, other client-side or server-side software involved in processing the web requests (like the HTTP web server, the PHP script interpreter, the database server, the Operating System, the web browser, or various firewalls) might log traffic and queries in various ways. These logs are independent of OIDplus and need to be managed by the system administrator and/or network administrators.</p>
  302.         <p>If you are concerned about the contents of the log files, please contact the system administrator.</p>
  303.  
  304.         <a id="cookies"></a><h2>Cookies</h2>
  305.         <p>A cookie is a small text file that is sent to this website every time you visit it, e.g. to identify you as a logged-in user.</p>
  306.         <p>OIDplus does only use cookies for the following purposes:</p>
  307.         <table class="table">
  308.                 <thead>
  309.                         <tr>
  310.                                 <td valign="top"><strong>Cookie</strong></td>
  311.                                 <td valign="top"><strong>Category</strong></td>
  312.                                 <td valign="top"><strong>Usage</strong></td>
  313.                                 <td valign="top"><strong>Will be created:</strong></td>
  314.                                 <td valign="top"><strong>Will be deleted:</strong></td>
  315.                         </tr>
  316.                 </thead>
  317.                 <tbody>
  318.                         <tr>
  319.                                 <td valign="top">Login-Cookie</td>
  320.                                 <td valign="top">Essential</td>
  321.                                 <td valign="top">Contains a server-signed "JSON Web Token" (JWT) that contains the username.</td>
  322.                                 <td valign="top">During the login of a user or administrator using their password.</td>
  323.                                 <td valign="top">When the user logs out.</td>
  324.                         </tr>
  325.                         <tr>
  326.                                 <td valign="top">SSL-Detect-Cookie</td>
  327.                                 <td valign="top">Essential</td>
  328.                                 <td valign="top">If the option "automatic SSL detection" is enabled by the system administrator, this cookie will check if the SSL port is open, to allow automatic redirection of HTTP to HTTPS.</td>
  329.                                 <td valign="top">During the first page visit over HTTPS, or after the first SSL detection.</td>
  330.                                 <td valign="top">When the browser session is closed.</td>
  331.                         </tr>
  332.                         <tr>
  333.                                 <td valign="top">Language Cookie</td>
  334.                                 <td valign="top">Essential</td>
  335.                                 <td valign="top">The language cookie contains the desired language.</td>
  336.                                 <td valign="top">As soon as a flag is clicked, or if an URL was opened that has a <code>lang=&hellip;</code> argument</td>
  337.                                 <td valign="top">When the browser session is closed.</td>
  338.                         </tr>
  339.                         <tr>
  340.                                 <td valign="top">CSRF token (2x)</td>
  341.                                 <td valign="top">Essential</td>
  342.                                 <td valign="top">Contains a random string that will be embedded into the page, as a counter-measure against "Cross-Site Request Forgery" (CSRF) attacks.</td>
  343.                                 <td valign="top">As soon as the page is opened using a JavaScript-compatible web browser.</td>
  344.                                 <td valign="top">When the browser session is closed.</td>
  345.                         </tr>
  346.                 </tbody>
  347.         </table>
  348.         <p>This list of cookies only applies to the main system. Third-party OIDplus plugins might use more cookies.</p>
  349.  
  350.         <a id="external_javascripts"></a><h2>External JavaScripts</h2>
  351.         <p>During the loading of the web page, various JavaScripts are included to improve the user experience and add essential functionalities. The basic scripts are the JavaScript files of OIDplus itself, which are stored on the server of the particular OIDplus installation.</p>
  352.         <p>The following JavaScripts are loaded from an external source/server:</p>
  353.  
  354.         <h3>reCAPTCHA (only if plugin "reCAPTCHA" is enabled)</h3>
  355.         <p>To protect sensitive functions of OIDplus (e.g. the login form) from hackers, the system administrator can enable "reCAPTCHA" which is a service of Google. Before enabling reCAPTCHA in the OIDplus setup/settings, the system administrator has to request an API key from Google. The usage of reCAPTCHA will probably introduce additional cookies that are out of the control of OIDplus.</p>
  356.         <p>Please see <a href="https://policies.google.com/privacy" target="_blank">Google's Privacy Policy</a> and <a href="https://policies.google.com/terms" target="_blank">Terms of service</a> for more information.</p>
  357.         <p>If the system administrator has not enabled the reCAPTCHA feature, no external script will be included at all.</p>
  358.         <p>If the feature is enabled, blocking the reCAPTCHA JavaScript on the client side will result in various functionalities (like the login form) not working.</p>
  359.  
  360.         <h3>hCaptcha (only if plugin "hCaptcha" is enabled)</h3>
  361.         <p>To protect sensitive functions of OIDplus (e.g. the login form) from hackers, the system administrator can enable "hCaptcha" which is a service of Intuition Machines, Inc. Before enabling hCaptcha in the OIDplus setup/settings, the system administrator has to request an API key from Intuition Machines, Inc. The usage of hCaptcha will probably introduce additional cookies that are out of the control of OIDplus.</p>
  362.         <p>Please see <a href="https://www.hcaptcha.com/privacy" target="_blank">Intuition Machines, Inc.'s Privacy Policy</a> and <a href="https://www.hcaptcha.com/terms" target="_blank">Terms of service</a> for more information.</p>
  363.         <p>If the system administrator has not enabled the hCaptcha feature, no external script will be included at all.</p>
  364.         <p>If the feature is enabled, blocking the hCaptcha JavaScript on the client side will result in various functionalities (like the login form) not working.</p>
  365.  
  366.         <a id="additional_security"></a><h2>Additional security / access controls</h2>
  367.         <p>System administrators can choose other methods to disable access from the public, e.g. by using firewalls (so that clients cannot access the server at all) or by setting up password protection at the level of the HTTP web server software (e.g. "Basic Auth" on Apache, so that the clients cannot access the directory where OIDplus is installed in).</p>
  368.  
  369.         <a id="encrypted_connections"></a><h2>Encrypted network connections</h2>
  370.         <p>The server administrator is responsible for securing the network connections using "HTTPS". This is done at the HTTP web server level (i.e. an Apache module/setting) and independent from OIDplus.</p>
  371.  
  372.         <a id="login_admin"></a><h2>Administrator login procedure</h2>
  373.         <p>The administrator login requires a password that is stored in a local configuration file. It is stored using a "salted hash" which is like a "one-way encryption" and therefore, the plain password cannot be seen by anyone who is reading the configuration file.</p>
  374.         <p>The configuration file is generated by a "setup" utility and can be manually edited by the system administrator.</p>
  375.  
  376.         <a id="login_ra"></a><h2>Registration Authority Login procedures</h2>
  377.         <p>There are several ways to log in as a Registration Authority:</p>
  378.         <ul>
  379.                 <li>Regular log-in method</li>
  380.                 <li>Log in using Google (optional plugin for OIDplus)</li>
  381.                 <li>Log in using Facebook (optional plugin for OIDplus)</li>
  382.                 <li>Log in using LDAP/ActiveDirectory (optional plugin for OIDplus)</li>
  383.         </ul>
  384.  
  385.         <a id="login_ra_regular"></a><h3>Regular log-in method</h3>
  386.         <p>With the login method, the Registration Authority logs in using a password they defined. The password is stored in the database using a "salted hash" which is like "one-way encryption". Therefore, the system administrator cannot see the password in the database table.</p>
  387.  
  388.         <a id="login_ra_google"></a><h3>Login using Google</h3>
  389.         <p>This alternative login method is an optional plugin that can be enabled by the administrator.</p>
  390.         <p>When the user clicks the "login using Google" link, they will be redirected to a Google "consent" screen where they can log in using their Google account credentials. (This procedure is called OAuth2) Note that this consent screen contains a Google-specific privacy policy and terms of service. Once you have logged in, Google will redirect the user back to OIDplus and sends a signed message which contains the following information about the person who has logged in:</p>
  391.         <ul>
  392.                 <li>Email address</li>
  393.                 <li>Verification status of the E-Mail address (must be verified)</li>
  394.                 <li>Personal name</li>
  395.                 <li>Language/Region setting (this information will not be evaluated by OIDplus and will be discarded)</li>
  396.                 <li>Link to profile picture (this information will not be evaluated by OIDplus and will be discarded)</li>
  397.                 <li>OpenID (this information will not be evaluated by OIDplus and will be discarded)</li>
  398.         </ul>
  399.         <p>The Google password is not transmitted to OIDplus.</p>
  400.         <p>If it is the first time the user has logged in, then OIDplus will then create a new Registration Authority account in the local database that contains this information. The account is yet password-less, therefore it can only be used for OAuth authentication.</p>
  401.         <p>The user can optionally define a password in case they want to additionally use the regular login method.</p>
  402.         <p>If the Registration Authority has a password-less account, then they cannot change their email address, because the OIDplus implementation of OAuth2 uses the email address as identification instead of the "OpenID" as usual. If they want to change their email address, then they must create a password first and then use the regular login method using the new email address.</p>
  403.  
  404.         <a id="login_ra_facebook"></a><h3>Login using Facebook</h3>
  405.         <p>This alternative login method is an optional plugin that can be enabled by the administrator.</p>
  406.         <p>When the user clicks the "login using Facebook" link, they will be redirected to a Facebook "consent" screen where they can log in using their Facebook account credentials. (This procedure is called OAuth2) Note that this consent screen contains a Facebook-specific privacy policy and terms of service. Once you have logged in, Facebook will redirect the user back to OIDplus and sends a signed message which contains the following information about the person who has logged in:</p>
  407.         <ul>
  408.                 <li>Email address</li>
  409.                 <li>Personal name</li>
  410.                 <li>User ID (this information will not be evaluated by OIDplus and will be discarded)</li>
  411.         </ul>
  412.         <p>The Facebook password is not transmitted to OIDplus.</p>
  413.         <p>Facebook preserves permission to hand over the e-mail address so that the consent screen is not displayed in later login attempts. These consents are managed in the "App" permissions in the Facebook account and can also be revoked there.</p>
  414.         <p>If it is the first time the user has logged in, then OIDplus will then create a new Registration Authority account in the local database that contains this information. The account is yet password-less, therefore it can only be used for OAuth authentication.</p>
  415.         <p>The user can optionally define a password in case they want to additionally use the regular login method.</p>
  416.         <p>If the Registration Authority has a password-less account, then they cannot change their email address, because the OIDplus implementation of OAuth2 uses the email address as identification instead of the "user id" as usual. If they want to change their email address, then they must create a password first and then use the regular login method using the new email address.</p>
  417.         <p><b>Attention:</b> Deleting the "App" in your Facebook settings will not remove the account in OIDplus. You need to remove your OIDplus account first, and then remove the "App" permission in your Facebook account.</p>
  418.  
  419.         <a id="login_ra_ldap"></a><h3>Login using LDAP / ActiveDirectory</h3>
  420.         <p>This alternative login method is an optional plugin that can be enabled by the administrator.</p>
  421.         <p>LDAP / ActiveDirectory is a technology where a server managed authentication for several services (like Windows computers, intranet, network shares, and mail accounts) and is usually used in large company networks.</p>
  422.         <p>In comparison to the usual login where the user enters the username and password, OIDplus will ask for an email address and password.</p>
  423.         <p>The email address is an optional field in the LDAP / ActiveDirectory database, therefore the network administrator must set the email addresses of each user in the network, so they can log in to OIDplus.</p>
  424.         <p>Once the user has entered the username and password, OIDplus will connect to the LDAP server and search for a user that fits the entered email address. When a user is found, OIDplus will check if the password fits the LDAP user.</p>
  425.         <p>Once this procedure was successful, OIDplus will fetch the following information from the LDAP server (if available in the LDAP directory):</p>
  426.         <ul>
  427.                 <li>"Common name" (CN)</li>
  428.                 <li>"Display name"</li>
  429.                 <li>Given name</li>
  430.                 <li>Surname (SN)</li>
  431.                 <li>Company</li>
  432.                 <li>Physical delivery office name</li>
  433.                 <li>Department</li>
  434.                 <li>Street address</li>
  435.                 <li>Postal code</li>
  436.                 <li>Locality (L)</li>
  437.                 <li>Country (CO)</li>
  438.                 <li>Phone number(s)</li>
  439.                 <li>Mobile phone number</li>
  440.                 <li>Fax number</li>
  441.         </ul>
  442.         <p>If it is the first time the user has logged in, then OIDplus will then create a new Registration Authority account in the local database that contains this information. The account is yet password-less, therefore it can only be used for LDAP authentication.</p>
  443.         <p>The user can optionally define a password in case they want to additionally use the regular login method.</p>
  444.         <p>If the Registration Authority has a password-less account, then they cannot change their email address, because the OIDplus implementation of LDAP / ActiveDirectory uses the email address as identification instead of the username as usual. If they want to change their email address, then they must create a password first and then use the regular login method using the new email address.</p>
  445. </body>
  446.  
  447. </html>
  448.