{"id":8656,"date":"2019-03-06T07:00:24","date_gmt":"2019-03-06T06:00:24","guid":{"rendered":"https:\/\/openstate.eu\/en\/?p=8656"},"modified":"2022-02-25T10:35:03","modified_gmt":"2022-02-25T09:35:03","slug":"one-in-three-healthcare-education-and-government-websites-are-not-secure","status":"publish","type":"post","link":"https:\/\/openstate.eu\/en\/2019\/03\/pulse2019eng\/","title":{"rendered":"One in three healthcare, education and government websites are not secure"},"content":{"rendered":"<p><strong>One in three websites from public organisations are still not secure. Sensitive data such as social security numbers, or even medical and psychological complaints can become public and misused. Those are the results of <\/strong><a href=\"https:\/\/data.openstate.eu\/dataset\/pulse-scan-van-https-in-de-publieke-sector\"><strong>research done by Open State Foundation<\/strong><\/a><strong>. <\/strong><\/p>\n<p>Open State Foundation has be researching the websites of public institutions since 2016 with <a href=\"https:\/\/pulse.openstate.eu\/\">Pulse<\/a>, a tool which checks whether websites support HTTPS (https:\/\/). HTTPS is important because it ensures a secure connection. When using HTTP (without the s) people with ill intentions can read the data and misuse it. From 2019 onwards it is <a href=\"https:\/\/www.computable.nl\/artikel\/nieuws\/security\/6496952\/250449\/https-in-2019-verplicht-voor-websites-overheid.html\">mandatory<\/a> for Dutch government websites to use HTTPS. Find the <a href=\"https:\/\/pulse.openstate.eu\/\">list with websites via Pulse<\/a>.<\/p>\n<h4>New Pulse Scan<\/h4>\n<p>Open State Foundation researched over 30.000 domains in relevant sectors healthcare, education and government. We do so by evaluating the response of four \u2018endpoints\u2019 in each domain: http:\/\/, http:\/\/www, https:\/\/, and https:\/\/www. The data from these endpoints is used to \u00a0determine the behaviour of the domain. This analysis makes use of <a href=\"https:\/\/github.com\/dhs-ncats\/pshtt\">open source tools<\/a> and the <a href=\"https:\/\/www.ssllabs.com\/\">SSL Labs API<\/a>.<\/p>\n<p>Practically the results of the scan (in comparison to the previous scan) are:<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-8660 \" src=\"https:\/\/openstate.eu\/wp-content\/uploads\/sites\/14\/2019\/03\/Screenshot-from-2019-02-21-193756-296x410.png\" alt=\"\" width=\"250\" height=\"312\" \/><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-8659 size-full\" src=\"https:\/\/openstate.eu\/wp-content\/uploads\/sites\/14\/2019\/03\/Screenshot-from-2019-02-21-193734-e1551800025789.png\" alt=\"\" width=\"250\" height=\"312\" \/><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-8658 size-full\" src=\"https:\/\/openstate.eu\/wp-content\/uploads\/sites\/14\/2019\/03\/Screenshot-from-2019-02-21-193718-e1551799993290.png\" alt=\"\" width=\"235\" height=\"280\" \/><\/p>\n<table width=\"602\">\n<tbody>\n<tr>\n<td><strong>Domain<\/strong><\/td>\n<td><strong>Current HTTPS Support<\/strong><\/td>\n<td><strong>Previous scan<\/strong><\/td>\n<td><strong>HTTPS Support previous scan<\/strong><\/td>\n<\/tr>\n<tr>\n<td>Healthcare<\/td>\n<td>70%<\/td>\n<td>07-08-2017<\/td>\n<td>39%<\/td>\n<\/tr>\n<tr>\n<td>Education<\/td>\n<td>70%<\/td>\n<td>01-12-2017<\/td>\n<td>32%<\/td>\n<\/tr>\n<tr>\n<td>Government<\/td>\n<td>88%<\/td>\n<td>24-12-2017<\/td>\n<td>72%<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>Want to know more about Pulse? Have a look at: <a href=\"https:\/\/pulse.openstate.eu\/\">pulse.openstate.eu<\/a>. You can see and use the full data from all scans at <a href=\"https:\/\/data.openstate.eu\/\">data.openstate.eu<\/a>. You can also contact Open State Foundation through this (secure) <a href=\"https:\/\/openstate.eu\/en\/contact\/\">contact form<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p>One in three websites from public organisations are still not secure. Sensitive data such as social security numbers, or even medical and psychological complaints can become &hellip; <a href=\"https:\/\/openstate.eu\/en\/2019\/03\/pulse2019eng\/\">Read more<\/a><\/p>\n","protected":false},"author":50,"featured_media":8685,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[526],"tags":[],"class_list":["post-8656","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-pulse-2"],"acf":[],"_links":{"self":[{"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/posts\/8656","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/users\/50"}],"replies":[{"embeddable":true,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/comments?post=8656"}],"version-history":[{"count":21,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/posts\/8656\/revisions"}],"predecessor-version":[{"id":8764,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/posts\/8656\/revisions\/8764"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/media\/8685"}],"wp:attachment":[{"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/media?parent=8656"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/categories?post=8656"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/openstate.eu\/en\/wp-json\/wp\/v2\/tags?post=8656"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}