Slashdot Mirror

← Back to Stories (view on slashdot.org)

Whitehouse Mandates HTTPS For Government Sites and Services

Posted by samzenpus on from the keeping-it-secure dept.

Bismillah writes: As per orders from Tony Scott, the government CIO, all federal agencies with publicly accessible websites must provide service only through a secure HTTPS connection. "Federal websites that do not convert to HTTPS will not keep pace with privacy and security practices used by commercial organizations, and with current and upcoming Internet standards," according to his memo. "This leaves Americans vulnerable to known threats, and may reduce their confidence in their government."

4 of 111 comments (clear)

  1. Oh the irony by Anonymous Coward · · Score: 5, Insightful

    Commanding the NSA to continue violating the Constitution and sucking up our data despite the Supreme Court's ruling that it is illegal. And this is the same gov't that wants to weaken encryption... yet they want to use it at the same time.

  2. Confidence in their government by Ada_Rules · · Score: 4, Insightful

    So, we'll keep locking people in rape cages for growing plants, pulling guns on unarmed teens and going through security theater in air ports with a 90% detection failure rate....But finally I can do https://whitehouse.gov/ to vote on a bogus petition with no effect. My confidence is restored thusly.

    --
    --- Liberty in our Lifetime
  3. Re:But encryption by viperidaenz · · Score: 4, Insightful

    No, they're trying to compromise encryption, not fight it.

  4. Re:Many are already using HTTPS and IPv6 by Zaelath · · Score: 1, Insightful

    OK, but explain to me why https://www.nasa.gov/ needs SSL/TLS at all, including the ongoing costs to maintain certificates and infrastructure, when it's a purely informational site?

    It's like insisting that posters of cars should be retrofitted with air-bags and collision detection.