Difference between revisions of "GC HTTPS Everywhere"

From wiki
Jump to navigation Jump to search
m
 
(20 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
[[File:GCcollab Banner http-vs-https.png|1200px|top|left|HTTPS]]
 
[[File:GCcollab Banner http-vs-https.png|1200px|top|left|HTTPS]]
{| class="wikitable" style="border-top: #000000 2px solid; border-bottom: #000000 2px solid; border-left: #000000 2px solid; border-right: #000000 2px solid" width="1000px"
+
 
 +
{| class="wikitable" style="align:center; border-top: #000000 2px solid; border-bottom: #000000 2px solid; border-left: #000000 2px solid; border-right: #000000 2px solid" width="1200px"
 
|-
 
|-
! style="background: #dddddd; color: black" width="250px" scope="col" |[https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/policy-implementation-notices/implementing-https-secure-web-connections-itpin.html ITPIN 2018-01]
+
! style="background: #dddddd; color: black" width="250px" scope="col" |[https://www.canada.ca/en/government/system/digital-government/modern-emerging-technologies/policy-implementation-notices/implementing-https-secure-web-connections-itpin.html ITPIN 2018-01]
! style="background: #dddddd; color: black" width="250px" scope="col" |[[HTTPS-Strategy | Implementation Strategy]]
+
! style="background: #dddddd; color: black" width="250px" scope="col" |[[/Strategy | Implementation Strategy]]
! style="background: #dddddd; color: black" width="250px" scope="col" |[[HTTPS Implementation Guidance | Implementation Guidance]]
+
! style="background: #dddddd; color: black" width="250px" scope="col" |[[/Implementation Guidance | Implementation Guidance]]
! style="background: #dddddd; color: black" width="250px" scope="col" |[[Communication Material]]
+
! style="background: #dddddd; color: black" width="250px" scope="col" |[[/Communication Material | Communication Material]]
 
|}
 
|}
  
{| class="wikitable" style="backgound: #fffff; width: 1200px";
+
{| style="width:1200px;align:top;"
 
|-
 
|-
! style="width: 900px; align: middle; text-align: left" |
+
| style="backgound:#ffffff;width:900px;text-align:left;weight:normal;padding:10px;" scope="col" |
  
 
==Overview==
 
==Overview==
 
<big>Canadians rely on the Government of Canada to provide secure digital services and expect government websites to be secure and private. The Government of Canada is committed to ensuring that all publicly accessible government websites and services are configured to provide service through a secure connection.</big>  
 
<big>Canadians rely on the Government of Canada to provide secure digital services and expect government websites to be secure and private. The Government of Canada is committed to ensuring that all publicly accessible government websites and services are configured to provide service through a secure connection.</big>  
  
The Government of Canada (GC)’s [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html Strategic Plan for Information Management and Information Technology 2017 to 2021] sets out strategic direction for information technology (IT) in the federal government and charts the path forward for IT from a whole-of-government or “enterprise” perspective.  The Plan details strategic areas of focus (Service, Manage, Secure, and Community) that specify actions and activities that are underway or that represent new enterprise directions.
+
The Government of Canada (GC)’s Strategic Plan for Information Management and Information Technology 2017 to 2021 sets out strategic direction for information technology (IT) in the federal government and charts the path forward for IT from a whole-of-government or “enterprise” perspective.  The Plan details strategic areas of focus (Service, Manage, Secure, and Community) that specify actions and activities that are underway or that represent new enterprise directions.  
  
 
Secure, in the context of the GC IT Strategic Plan, involves, among other things, protective measures to enable the secure processing and sharing of data and information across government.  This includes protecting Canadians and their online transactions while interacting with the government.  Unencrypted connections to publicly-available GC websites and web services are vulnerable to manipulation, impersonation, and can expose sensitive user information.
 
Secure, in the context of the GC IT Strategic Plan, involves, among other things, protective measures to enable the secure processing and sharing of data and information across government.  This includes protecting Canadians and their online transactions while interacting with the government.  Unencrypted connections to publicly-available GC websites and web services are vulnerable to manipulation, impersonation, and can expose sensitive user information.
  
 
To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html#toc8-3-2 HTTPS protocol for web-based connections].  The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services.
 
To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the [https://www.canada.ca/en/treasury-board-secretariat/services/information-technology/strategic-plan-2017-2021.html#toc8-3-2 HTTPS protocol for web-based connections].  The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services.
!  style="width: 300px" |
 
  
<div style="border: 5px solid #6F3F87; padding: 20px; width: 250px; height:125px; align: center; text-align: center">
+
| style="width:300px;text-align:left;padding:10px;" scope="col" ; |
 +
 
 +
<div style="border: 5px solid #6F3F87; padding: 10px; width: 250px; align: middle; text-align: center">
 
[[File:Mini_message_icon.png|75px|link=https://message.gccollab.ca/channel/httpseverywhere-httpspartout]]<br><br>
 
[[File:Mini_message_icon.png|75px|link=https://message.gccollab.ca/channel/httpseverywhere-httpspartout]]<br><br>
Join the discussion on [https://message.gccollab.ca/channel/httpseverywhere-httpspartout GCmessage]!
+
[https://message.gccollab.ca/channel/httpseverywhere-httpspartout Join the discussion on GCmessage]!
 
</div>
 
</div>
 
<div style="width:300;height:10px;"></div>
 
<div style="width:300;height:10px;"></div>
<div style="border: 5px solid #6F3F87; padding: 20px; width: 250px; height:125px; align: center; text-align: center">
+
<div style="border: 5px solid #6F3F87; padding: 10px; width:250px; align:middle; text-align: center">
 
[[File:Gccollab.png|75px|link=https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018]]<br><br>
 
[[File:Gccollab.png|75px|link=https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018]]<br><br>
 
[https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018 Join the discussion on GCcollab]!
 
[https://gccollab.ca/groups/profile/1358152/engc-https-everywhere-2018frgc-https-partout-2018 Join the discussion on GCcollab]!
Line 33: Line 35:
  
 
|}
 
|}
 +
[[Category:Government of Canada Enterprise Security Architecture (ESA) Program]]
 +
[[Category:Security]]
 +
[[Category:Enterprise Security Architecture]]
 +
[[Category:GC Enterprise Architecture]]

Latest revision as of 13:41, 25 August 2020

HTTPS
ITPIN 2018-01 Implementation Strategy Implementation Guidance Communication Material

Overview

Canadians rely on the Government of Canada to provide secure digital services and expect government websites to be secure and private. The Government of Canada is committed to ensuring that all publicly accessible government websites and services are configured to provide service through a secure connection.

The Government of Canada (GC)’s Strategic Plan for Information Management and Information Technology 2017 to 2021 sets out strategic direction for information technology (IT) in the federal government and charts the path forward for IT from a whole-of-government or “enterprise” perspective. The Plan details strategic areas of focus (Service, Manage, Secure, and Community) that specify actions and activities that are underway or that represent new enterprise directions.

Secure, in the context of the GC IT Strategic Plan, involves, among other things, protective measures to enable the secure processing and sharing of data and information across government. This includes protecting Canadians and their online transactions while interacting with the government. Unencrypted connections to publicly-available GC websites and web services are vulnerable to manipulation, impersonation, and can expose sensitive user information.

To provide Canadians with the strongest privacy and integrity protection regardless of the sensitivity of the information being transmitted, TBS will establish a “Hypertext Transfer Protocol Secure (HTTPS) everywhere” standard that will require departments and agencies to use the HTTPS protocol for web-based connections. The HTTPS protocol, along with approved encryption algorithms, will ensure the secure transmission of data online and the delivery of secure web services.