"/ >

PAe - Opened the term for an analysis HTTPS of environments and web applications of the public sector
the accesskey _ mod _ content

Open the term for an analysis HTTPS of environments and web applications of the public sector

11 April 2017

CCN-CERT Logo

El CCN-CERT, dentro de su campaña de impulso a la implantación de HTTPS en las sedes electrónicas del sector público, ha abierto el plazo para solicitar un análisis de los dominios, servidores y aplicaciones web de todos aquellos organismos y entidades que así lo deseen.

Applicants for this service have until May 19 to become part of the study of the National Government CERT whose objective is to assess the implementation of HTTPS and the current state of the ecosystem HTTPS in the public sector. This only should complete a file Excel and send it to an email address, both available in the website CCN-CERT's report (Opens in new window) .

En dicho fichero, deberán proporcionar todos los dominios, servidores y aplicaciones web que deseen incluir en el estudio. Una vez analizados los entornos web objetivo, el CCN-CERT remitirá un informe con los resultados detallados del análisis HTTPS. El estudio se complementa con el informe de recomendaciones para su correcta implantación.

The CCN-CERT (Opens in new window) señala la importancia de hacer uso de comunicaciones web lo más seguras posibles, es decir, basadas únicamente en el uso del protocolo HTTPS frente a HTTP, independientemente del dispositivo cliente utilizado.

Parallel to this service, the CCN-CERT has published its Informe de Buenas Prácticas CCN-CERT BP-01/17. Recomendaciones de implementación de HTTPS which stresses the importance of making use of web communications as safe as possible, i.e. based solely on the use of this protocol address HTTP, which provides both authentication mechanisms as encryption and integrity. Using HTTPS in web technologies is application in both corporate environments as for individual use of the same, regardless of whether they are accessed from traditional computers and mobile devices, or from any other technological device, as partners to the Internet of things (IoT, Internet of Things).

On this occasion, the report of good practices is particularly aimed at those responsible for security (not the end user) and includes technical details for implementation and safe deployment HTTPS protocol in environments, servers and web applications.

Original source of the news (Opens in new window) .

 

  • Security
  • Administrative cooperation
  • Electronic services
General access point
 
General access point