Changes

Jump to navigation Jump to search

GC HTTPS Compliance Checklist (view source)

Revision as of 08:47, 30 March 2020

3 bytes added ,  08:47, 30 March 2020
→‎Required Actions
Line 3: Line 3:  
Departments are required to:
 
Departments are required to:
 
#Ensure implementation of HTTPS meets the secure connection standard:  
 
#Ensure implementation of HTTPS meets the secure connection standard:  
##All connection endpoints (servers, load balancers, proxies, etc) are configured to offer TLS 1.2 alone;  
+
##All connection endpoints (servers, load balancers, proxies, etc) are configured to offer TLS 1.2 or above;  
 
##All web servers support HSTS;  
 
##All web servers support HSTS;  
 
##Any remaining SHA-1 certificates are immediately replaced with SHA-256 certificates from a GC trusted Certificate Authority (CA);
 
##Any remaining SHA-1 certificates are immediately replaced with SHA-256 certificates from a GC trusted Certificate Authority (CA);
Retrieved from "https://wiki.gccollab.ca/Special:MobileDiff/20636"

Navigation menu

GCwiki