Simple things are complicated: making a show password option
Adding a ‘show password’ option to GOV.UK accounts looked like a straightforward task, but it was more interesting and complicated than we expected.
How we fixed a strange ‘week year’ bug
When a pull request failed because of an incorrect creation date, the GOV.UK Pay team investigated the cause. Here’s how they found and fixed the bug.
The road to closing down the PSN
Posted by:
Mark Smith, GDS Head of PSN and Cyber Compliance, Posted on:
-
Categories:
Security, Transformation
Government Digital Service is continuing work to support migration away from the Public Services Network. Here’s an update on what we’ve done so far in 2020 and a summary of next steps.
Using Istio routing rules to reduce data sharing risks
Posted by:
Daniel Blair, Senior Site Reliability Engineer, GDS, Posted on:
-
Categories:
Data, GOV.UK Verify, Security
The GOV.UK Verify team at GDS needed to make sure data was protected when being shared with the eIDAS regulation framework. Here’s how they did it.
Using multi-stage Docker builds to patch vulnerable containers
Posted by:
Dan Jones, developer for Cyber Security, GDS, Posted on:
-
Categories:
Open Source, Tools
The Cyber Security team at GDS discovered it was using a vulnerable container. Here’s how the team fixed the issue and made its clean container publicly available.
Signposting technology security
Posted by:
Claire Ashworth, GDS, Technical Writer and Lewis Dunne, Senior Policy Advisor, CDDO, Posted on:
-
Categories:
Tools, Transformation
We’ve updated our security guidance in the Technology Code of Practice so it helps teams build security into their projects from the start.
NCSC explores potential security opportunities that can come with using the GDS cloud lock-in guidance
Posted by:
Tom March, GDS Lead Technology Advisor, Andrew A, Cloud Security Research Lead, NCSC and Jamie H, Senior Security Researcher, NCSC, Posted on:
-
Categories:
Tools, Transformation
Security researchers from the National Cyber Security Centre (NCSC) expand on the topics of data portability, native cloud services and security associated with cloud lock-in.
Introducing our cloud lock-in guidance and case study
Posted by:
Tom March, GDS Lead Technology Advisor and James O’Neill, GDS Senior Technology Policy Advisor, Posted on:
-
Categories:
News, Transformation
The Government Digital Service has published the first part of our new suite of cloud guidance, covering provider lock-in. We’ve also published a case study on cost optimisation at the Home Office.
Relaunching the .gov.uk domain name application process
Posted by:
Khidr Suleman, GDS Technical Writer, Posted on:
-
Categories:
GOV.UK, News, Transformation
The .gov.uk domain name application guidance is the first piece of government technology content to use the new step-by-step pattern. Here’s how we made it happen and the benefits of displaying the content in this way for users.
The vision for the Future Networks for Government (FN4G) programme
Posted by:
Mark Smith, GDS Head of PSN and Cyber Compliance, Posted on:
-
Categories:
News, Transformation
The Future Networks for Government (FN4G) programme started in 2018 to look at the role of the Public Services Network (PSN). Here’s an update of what we’ve done so far and what we expect to achieve by March 2020.