The American people expect government websites to be secure and their interactions with those websites to be private.
This site contains a web-friendly version of the White House Office of Management and Budget memorandum M-15-13, "A Policy to Require Secure Connections across Federal Websites and Web Services", and provides technical guidance and best practices to assist in its implementation.
Please open an issue to leave feedback or suggestions. Pull requests are welcome to pages other than the homepage, which shows the final policy and is not subject to change through GitHub.
This policy was open for public comment before its finalization. It received numerous comments whose thoughtfulness and feedback improved the final policy.
You can see what changed between the proposal and the final policy in pull request #108.
The homepage of this site is the final policy. The other pages on https.cio.gov are open for contribution at any time, and are intended to be resources for agencies implementing the HTTPS policy.
If you're using this repository to run the site locally, instructions follow below.
Dependencies:
- Node 6+ to install USWDS and dependencies
- Ruby and bundler to install / run Jekyll
npm installto install the USWDS, and Gulp dependencies.npm install -g gulpto let you use thegulpCLI directly.bundle installto install Jekyll.
If you'll be editing the Sass/CSS:
gulp watch
To run the app:
bundle exec jekyll serve
This project is in the worldwide public domain. As stated in CONTRIBUTING:
This project is in the public domain within the United States, and copyright and related rights in the work worldwide are waived through the CC0 1.0 Universal public domain dedication.
All contributions to this project will be released under the CC0 dedication. By submitting a pull request, you are agreeing to comply with this waiver of copyright interest.