• No results found

Hosting Requirements

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Hosting Requirements"

Copied!
9
0
0

Loading.... (view fulltext now)

Download now ( 9 Page )

Full text

(1)

Hosting Requirements

Business owner Andrew Jones

Author Andrew Jones

Last saved 14/05/2010 by Adam Newman

Version 3.3

The council's public web presence

Requirements for hosting systems with detail about domain names and security considerations.

Council staff ● Service managers

Suppliers ● Project managers ○

System implementers ●

target audience System developers ●

(2)

© South Gloucestershire Council 2008 Page 2 of 9

Document history

Version Section Date Name Comments

0.1 ALL 01/09/08 Andrew Jones Working version.

3.0 ALL 15/10/08 Andrew Jones 1st released version to account for restructuring of the overall pack. 3.2 ALL 11/11/09 Adam Newman Cosmetic alterations & title updates

3.3 None 17/10/10 - n/a

Associated documents

Reference Document Version Date

Definitions

Term Meaning

Council South Gloucestershire Council

(3)

© South Gloucestershire Council 2008 Page 3 of 9

Contents

Document history... 2 Associated documents ... 2 Definitions ... 2 Contents ... 3 1 Overview ... 4

1.1 Other documentation in the pack ... 4

2 Domain name ... 5

2.1 Choosing domain names... 5

2.1.1 Services delivered directly by the council ... 5

2.1.2 Services delivered by the council in partnership with an organisation... 5

2.1.3 Services delivered by the council in partnership with other authorities... 5

2.2 Registering domain names ... 6

2.3 Implementing domain names... 6

3 Security considerations ... 7

3.1 Implementing SSL ... 7

4 Our hosting environment ... 8

(4)

© South Gloucestershire Council 2008 Page 4 of 9

1 Overview

This document explains our expectations when hosting public-facing web services. There are two key factors determining how much of this is relevant to a particular site or system: whether the service is being delivered by the council alone or in partnership with other authorities or organisations; and, whether the system is hosted by us or with a 3rd party supplier.

1.1 Other documentation in the pack

We have produced a pack of documents that explain our requirements and offer additional guidance. Use this document in the context of the others within the pack.

1.

An introduction to our package of guidance – Introduction.doc

Here we explain what the pack contains and why we have created it.

2.

A guide for content authors that has relevance to everybody – Content.doc

Guidance for writing good quality web-based content that is also in the council style.

3.

Web standards requirements - Standards.doc

Requirements for meeting web standards, specifically in areas of accessibility and usability.

4.

Implementing our website skin – Skin.doc

Guidance for a consistent approach to implementing the council brand and site navigation.

5.

Hosting requirements – Hosting.doc

Requirements for hosting systems with detail about domain names and security considerations.

APPENDIX: Supplier specific guide – Appendix-{Supplier}.doc

(5)

© South Gloucestershire Council 2008 Page 5 of 9

2 Domain

name

2.1 Choosing

domain

names

2.1.1 Services delivered directly by the council

We would expect the site or system to be hosted under the name {service}.southglos.gov.uk where {service} is a sensible and concise way of labelling the service from a public perspective. (It should not be the brand-name of the system itself.)

Using a domain name that begins {service}.southglos.gov.uk provides the customer with confidence that they are dealing with our organisation and not ‘disappearing’ off onto the internet somewhere to deal with some other random company. It also protects our brand identity.

2.1.2 Services delivered by the council in partnership with an organisation

We would want to discuss the most appropriate name in the circumstances. It may be appropriate still to use the southglos.gov.uk domain, but it is more likely that we would want to use a more specific .org.uk name.

There may be other suitable domain suffixes but .org.uk is our normal recommendation. Most services delivered in partnership with the council are through organisations so this is an appropriate use of the suffix. We are in the UK, so the full .org.uk is more

appropriate than .org alone. Use of .info is also acceptable but we see use of .com and .co.uk as only suitable for commercial enterprises as intended.

2.1.3 Services delivered by the council in partnership with other authorities

In this case we would probably want to use the same terms as for services delivered in partnership with an organisation. Again, any choice of domain name would need to be mutually acceptable to all parties. Alternatively the project may decide it is more appropriate for each authority to use its own name to point to the single site or system.

(6)

© South Gloucestershire Council 2008 Page 6 of 9

2.2 Registering

domain

names

Council staff should never register domain names themselves. This causes expensive problems when making hosting arrangements and when renewals occur, especially when staff leave the council.

The council’s ICT department will register domain names as part of any implementation project. The only exception to this is where the supplier is hosting the system and we are not using a southglos.gov.uk name. Suppliers should only register domain names when we have mutually agreed an appropriate name.

We always wish to avoid using shared domain names that contain a supplier or 3rd party

host’s name (e.g. www.mysupplier.com/southglos is not desirable.

Using a southglos.gov.uk domain name has the added benefit of being able to use our SSL wildcard certificate if SSL is appropriate to the application.

2.3 Implementing domain names

If the council’s ICT department register the name via our ISP we arrange for the public DNS records to point to servers where the system or site is hosted. If the hosting is to be with the 3rd party, we need to know the IP address of your server or load balancer.

(7)

© South Gloucestershire Council 2008 Page 7 of 9

3 Security

considerations

3.1 Implementing

SSL

We insist that any system captures personal information also implements SSL. This provides the customer confidence that we are taking the protection of their data seriously. This is always our policy whether we are implementing a system ourselves or in conjunction with another authority or organisation.

We feel that in today’s environment, this is a position of best practice that should also be a standard implementation decision for suppliers.

We can discuss implementation with individual suppliers according to hosting arrangements. Ideally externally hosted systems will be using a southglos.gov.uk domain name which means it will be possible to use our SSL wildcard certificate.

(8)

© South Gloucestershire Council 2008 Page 8 of 9

4 Our hosting environment

This section is due to be added to the document in a future version.

It will contain details about how suppliers will be able to use the council’s infrastructure for hosting web applications.

(9)

© South Gloucestershire Council 2008 Page 9 of 9

5 Change

control

expectations

This section is due to be added to the document in a future version.

It will contain details about how we expect suppliers to deal with change control and release management when making use of our hosting environment or hosting a system on our behalf.

References

Download now ( PDF - 9 Page - 85.56 KB )

Related documents

Sample Policy For Employees

Favor you leave and sample policy employees use their job application for absence may take family and produce emails waste company it discusses email etiquette Deviation from

Default Risk and Contagion in the US Financial Sector: An Empirical Analysis of the Commercial and Investment Banking, and Insurance Sectors

Significant, positive coefficients denote that the respective sector (commercial banking, investment banking, life insurance or property-casualty insurance) experienced

Summer Learning Loss among Elementary School Children with Reading Disabilities

We hy- pothesized that the RD group would show significant losses in terms of phonological processing, phonological awareness, reading fluency, vocabulary, and reading

Eksekusi Objek Jaminan Fidusia Tidak Terdaftar Ditinjau Dari Undang- Undang Nomor 42 Tahun 1999 Tentang Jaminan Fidusia

Eksekusi objek jaminan fidusia tidak terdaftar ditinjau dari Undang-Undang Nomor 1999 Tentang Fidusia adalah bahwa pemberi fidusia dapat menggugat ganti rugi terhadap

Base Plate Thickness

For the yielding limit state, the required minimum thickness of the base plate can be calculated as follows (AISC,2005d) = 0.65 as per Section 9.3 of ACI318-08.... The base plate

LEARNING DIFFERENTLY: HANDBOOK FOR STUDENTS WITH LEARNING DISABILITIES AT CABRILLO COLLEGE

One of the major responsibilities of a Learning Disabilities Specialist is to make sure that students with learning disabilities are given an equitable opportunity to compete in

Strategic Partnership Program

Kwaku Gyabahh, Director of Purchasing, Clark Construction Hani Al-alawneh, Vice President, Clark Construction Lauren Fohl, Project Manager, Clark Construction Greg Seldon,

enetgetika

- ograniCila prencscna snaga u Casu kada snaga turbine dosegne nominalnu snagu gene- ratom. c) S!GURNOSN! NADZOR ukljucujc nadzor lIvjeta u kc~iima vjctroelektrana radi, te