Changes

Jump to navigation Jump to search

HTTPS Speaking Points (view source)

Revision as of 11:28, 18 July 2019

126 bytes added ,  11:28, 18 July 2019
→‎What Departments Need to do to be Compliant
Line 31: Line 31:  
* Public domains must provide instructions for users’ browsers to only connect to the HTTPS domains (i.e. HTTP Strict Transport Security (HSTS) must be enabled).
 
* Public domains must provide instructions for users’ browsers to only connect to the HTTPS domains (i.e. HTTP Strict Transport Security (HSTS) must be enabled).
 
* Public domains must disable known weak connection protocols and encryption ciphers, in accordance Communication Security Establishment guidance (ITSP.40.062 and ITSP.40.111).
 
* Public domains must disable known weak connection protocols and encryption ciphers, in accordance Communication Security Establishment guidance (ITSP.40.062 and ITSP.40.111).
* Public domains must use HTTPS certificates issued from a Certificate Authority (e.g. Entrust via SSC).
+
* Public domains must use HTTPS certificates issued from a Certificate Authority (e.g.: Entrust via SSC; see Certificates in [https://wiki.gccollab.ca/GC_HTTPS_Everywhere/Implementation_Guidance Implementation Guidance] for more).
Tim.allardyce
263

edits

Retrieved from "https://wiki.gccollab.ca/Special:MobileDiff/11126"

Navigation menu

GCwiki