Changes

3,653 bytes added ,  09:06, 23 October 2018
Created page with "[[File:GCcollab Banner http-vs-https.png|frameless|"HTTPS"] {| class="wikitable" style="border-top: #000000 2px solid; border-bottom: #000000 2px solid; border-left: #000000 2..."
[[File:GCcollab Banner http-vs-https.png|frameless|"HTTPS"]
{| class="wikitable" style="border-top: #000000 2px solid; border-bottom: #000000 2px solid; border-left: #000000 2px solid; border-right: #000000 2px solid" width="1000px"
|-
! style="background: #dddddd; color: black" width="250px" scope="col" " |[https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/policy-implementation-notices/implementing-https-secure-web-connections-itpin.html ITPIN 2018-01]
! style="background: #dddddd; color: black" width="250px" scope="col" " |[[HTTPS-Strategy | Implementation Strategy]]
! style="background: #dddddd; color: black" width="250px" scope="col" " |[[HTTPS Implementation Guidance | Implementation Guidance]]
! style="background: #dddddd; color: black" width="250px" scope="col" " |[[Communication Material]]
|}

<div style="float: right">
<div style="border: 25px; border: 5px solid #6F3F87; padding: 20px; width: 300px; height:150px;">
<div style="text-align: center">
<div align="center">
[[File:message_icon.png|100px|link=https://message.gccollab.ca/channel/httpseverywhere-httpspartout]]
Join the discussion on the [https://message.gccollab.ca/channel/httpseverywhere-httpspartout #HTTPS-Everywhere channel] on GCmessage.
</div>
</div>
</div>
<div style="border: 25px; border: 5px solid #047177; padding: 20px; width: 300px; height:150px;">
<div style="text-align: center">
<div align="center">
[[File:mini_collab_icon.png|250px|link=https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018]]
Join the discussion on HTTPS Everywhere on GCcollab.
</div>
</div>
</div>
</div>

==Overview==
<big>Canadians rely on the Government of Canada to provide secure digital services and expect government websites to be secure and private. The Government of Canada is committed to ensuring that all publicly accessible government websites and services are configured to provide service through a secure connection.</big>

The Government of Canada (GC)’s [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html Strategic Plan for Information Management and Information Technology 2017 to 2021] sets out strategic direction for information technology (IT) in the federal government and charts the path forward for IT from a whole-of-government or “enterprise” perspective. The Plan details strategic areas of focus (Service, Manage, Secure, and Community) that specify actions and activities that are underway or that represent new enterprise directions.

Secure, in the context of the GC IT Strategic Plan, involves, among other things, protective measures to enable the secure processing and sharing of data and information across government. This includes protecting Canadians and their online transactions while interacting with the government. Unencrypted connections to publicly-available GC websites and web services are vulnerable to manipulation, impersonation, and can expose sensitive user information.

To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html#toc8-3-2 HTTPS protocol for web-based connections]. The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services.
263

edits