Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Proposal for New Standard: Web Site Standards #6

Open
TotallyInformation opened this issue Dec 21, 2020 · 2 comments
Open

Proposal for New Standard: Web Site Standards #6

TotallyInformation opened this issue Dec 21, 2020 · 2 comments
Assignees
@TotallyInformation
Labels
3) Development Stage Assigned to SME's to create standard, working across information domains as needed

Comments

@TotallyInformation
Copy link
Member

TotallyInformation commented Dec 21, 2020
edited
Loading

Proposed name/title

Standards for Websites

Purpose and description

Why would this standard be useful? What might be its scope? Who and what systems/services might be impacted by it?
Details the basic requirements for any website owned and operated by or on-behlaf of NHS England, or NHS Improvement.

Any team or organisation setting up or running websites for or on-behalf of NHSE&I must use these standards as a minimum.

Information domain this standard would relate to

Web development, corporate system development, infrastructure design, IT procurement, IT operations, service management, cyber security.

Existing related standards?

  • IDAM

References to related external standards

NHS, NCSC and NIST standards for web sites.
@TotallyInformation TotallyInformation added 1) Suggestion Stage Phase 1 - suggested new or amended standard 3) Development Stage Assigned to SME's to create standard, working across information domains as needed and removed 1) Suggestion Stage Phase 1 - suggested new or amended standard labels Dec 21, 2020
@TotallyInformation
Copy link
Member Author

What do we need to include in the standard?

  • References to external standards and recommendations
  • Reference to NCSC Webcheck
  • Requirements for Pen Testing
  • http->https redirect, no http.
  • TLS configuration requirements
  • WAI-AA+ accessibility requirements
  • Approvals requirements (IT approvals and GDS approvals)
  • Colour/design standards (NHS Design Manual, GDS Design Manual)
  • Recommended libraries (e.g. REACT)
  • Identity Management requirements (where IDAM is needed)

@TotallyInformation TotallyInformation self-assigned this Dec 21, 2020
@simplybenuk
Copy link
Contributor

I think there are a few things in the NHS Service Standard we should follow
Main things that popping out at me that we should be incorporating are

Do we want to define some SEO standards in here too. Especially if we're creating websites that need to be found via Search. Too many times this is overlooked. Half the battle is getting people to know about your site and this can help here

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@TotallyInformation TotallyInformation

Labels
3) Development Stage Assigned to SME's to create standard, working across information domains as needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@TotallyInformation @simplybenuk