Difference between revisions of "GC HTTPS Everywhere"
(14 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
[[File:GCcollab Banner http-vs-https.png|1200px|top|left|HTTPS]] | [[File:GCcollab Banner http-vs-https.png|1200px|top|left|HTTPS]] | ||
− | {| class="wikitable" style="border-top: #000000 2px solid; border-bottom: #000000 2px solid; border-left: #000000 2px solid; border-right: #000000 2px solid" width=" | + | |
+ | {| class="wikitable" style="align:center; border-top: #000000 2px solid; border-bottom: #000000 2px solid; border-left: #000000 2px solid; border-right: #000000 2px solid" width="1200px" | ||
|- | |- | ||
− | ! style="background: #dddddd; color: black" width="250px" scope="col" |[https://www.canada.ca/en/ | + | ! style="background: #dddddd; color: black" width="250px" scope="col" |[https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/policy-implementation-notices/implementing-https-secure-web-connections-itpin.html ITPIN 2018-01] |
− | ! style="background: #dddddd; color: black" width="250px" scope="col" |[[ | + | ! style="background: #dddddd; color: black" width="250px" scope="col" |[[/Strategy | Implementation Strategy]] |
− | ! style="background: #dddddd; color: black" width="250px" scope="col" |[[ | + | ! style="background: #dddddd; color: black" width="250px" scope="col" |[[/Implementation Guidance | Implementation Guidance]] |
− | ! style="background: #dddddd; color: black" width="250px" scope="col" |[[Communication Material]] | + | ! style="background: #dddddd; color: black" width="250px" scope="col" |[[/Communication Material | Communication Material]] |
|} | |} | ||
− | {| style="width:1200px;" | + | {| style="width:1200px;align:top;" |
|- | |- | ||
− | + | | style="backgound:#ffffff;width:900px;text-align:left;weight:normal;padding:10px;" scope="col" | | |
==Overview== | ==Overview== | ||
Line 20: | Line 21: | ||
To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html#toc8-3-2 HTTPS protocol for web-based connections]. The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services. | To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html#toc8-3-2 HTTPS protocol for web-based connections]. The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services. | ||
− | |||
− | <div style="border: 5px solid #6F3F87; padding: | + | | style="width:300px;text-align:left;padding:10px;" scope="col" ; | |
+ | |||
+ | <div style="border: 5px solid #6F3F87; padding: 10px; width: 250px; align: middle; text-align: center"> | ||
[[File:Mini_message_icon.png|75px|link=https://message.gccollab.ca/channel/httpseverywhere-httpspartout]]<br><br> | [[File:Mini_message_icon.png|75px|link=https://message.gccollab.ca/channel/httpseverywhere-httpspartout]]<br><br> | ||
− | + | [https://message.gccollab.ca/channel/httpseverywhere-httpspartout Join the discussion on GCmessage]! | |
</div> | </div> | ||
<div style="width:300;height:10px;"></div> | <div style="width:300;height:10px;"></div> | ||
− | <div style="border: 5px solid #6F3F87; padding: | + | <div style="border: 5px solid #6F3F87; padding: 10px; width:250px; align:middle; text-align: center"> |
[[File:Gccollab.png|75px|link=https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018]]<br><br> | [[File:Gccollab.png|75px|link=https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018]]<br><br> | ||
[https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018 Join the discussion on GCcollab]! | [https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018 Join the discussion on GCcollab]! |
Revision as of 14:32, 26 April 2019
ITPIN 2018-01 | Implementation Strategy | Implementation Guidance | Communication Material |
---|
OverviewCanadians rely on the Government of Canada to provide secure digital services and expect government websites to be secure and private. The Government of Canada is committed to ensuring that all publicly accessible government websites and services are configured to provide service through a secure connection. The Government of Canada (GC)’s Strategic Plan for Information Management and Information Technology 2017 to 2021 sets out strategic direction for information technology (IT) in the federal government and charts the path forward for IT from a whole-of-government or “enterprise” perspective. The Plan details strategic areas of focus (Service, Manage, Secure, and Community) that specify actions and activities that are underway or that represent new enterprise directions. Secure, in the context of the GC IT Strategic Plan, involves, among other things, protective measures to enable the secure processing and sharing of data and information across government. This includes protecting Canadians and their online transactions while interacting with the government. Unencrypted connections to publicly-available GC websites and web services are vulnerable to manipulation, impersonation, and can expose sensitive user information. To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the HTTPS protocol for web-based connections. The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services. |