Menu
US to require HTTPS for all government websites

US to require HTTPS for all government websites

All public sites will be required to use the protocol by the end of 2016

The U.S. government website for HTTPS deployment

The U.S. government website for HTTPS deployment

The U.S. government is mandating the use of the HTTPS security protocol on all of its public websites and web services by the end of 2016.

Deploying HTTPS will authenticate communications with government websites and encrypt the data sent back and forth, which will help protect against snooping and imposter websites.

The protocol, use of which is often signaled by a green lock icon in the address bar of a web browser, has been used for years by financial websites but has expanded significantly in recent years.

The expansion has been partly due to Edward Snowden's revelations about U.S. government spying and eavesdropping, so it's not without irony that the government itself is now deploying the technology.

The government's should will make it more difficult for third parties to intercept communications and make interacting with government sites more secure for all users.

U.S. CIO Tony Scott on Monday signed the mandate to deploy HTTPS and use HTTP Strict Transport Security (HSTS), a system that instructs a web browser to always connect to a website via HTTPS. That prevents a browser from being redirected to an insecure site.

"With this new requirement, the Federal web community seeks to drive faster internet-wide adoption of HTTPS and promote better privacy standards for the entire browsing public," his office said in a statement.

The mandatory use of HTTPS was first proposed in March when the government began accepting comments on its plans from the security community and public.

Martyn Williams covers mobile telecoms, Silicon Valley and general technology breaking news for The IDG News Service. Follow Martyn on Twitter at @martyn_williams. Martyn's e-mail address is martyn_williams@idg.com


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags governmentsecurityencryptiononline safetyGovernment use of ITU.S. Government

Featured

Slideshows

Ingram Micro maintains Showcase 2018 momentum in Wellington

Ingram Micro maintains Showcase 2018 momentum in Wellington

Ingram Micro maintained Showcase 2018 momentum in Wellington, hosting more than 40 vendors at TSB Arena. Under the banner of Leading the Way, the event demonstrated what’s new, what’s next and how it can be used to improve business and everyday life.

Ingram Micro maintains Showcase 2018 momentum in Wellington
Ingram Micro launches Showcase 2018 in Christchurch

Ingram Micro launches Showcase 2018 in Christchurch

Ingram Micro kickstarted Showcase 2018 in Christchurch, hosting more than 40 vendors at Horncastle Arena. Under the banner of Leading the Way, the event demonstrated what’s new, what’s next and how it can be used to improve business and everyday life.

Ingram Micro launches Showcase 2018 in Christchurch
Data breach notification laws in NZ: How can partners prepare?

Data breach notification laws in NZ: How can partners prepare?

This exclusive Reseller News Roundtable outlined the responsibilities facing security partners today, assessing risk while evaluating the role of the vendor in providing added layers of protection.

Data breach notification laws in NZ: How can partners prepare?
Show Comments