Published on PublicTechnology.net (https://www.publictechnology.net)

Home > Failure to renew security certificate fells Conservative website

Failure to renew security certificate fells Conservative website

Written by Sam Trendall on 8 January 2018 in News
News

Party makes IT gaffe on day of major reshuffle

Credit: Mozilla Firefox

On the day of a major cabinet reshuffle, a failure to keep its security certificates up to date left the Conservative website out of action for hours.

Up until a little after 11.30am this morning, attempts to visit the party’s website prompted a web-browser error message, warning users that their connection was ‘not secure’, or ‘not private’. Details provided by Mozilla Firefox (pictured) revealed that the site’s secure sockets layer (SSL) security certificate expired at midnight last night. 

In recent weeks certification authorities should have sent the party at least five warning notices and prompts to renew, 30, 15, 7, 3, and 1 day before the certificate expired. These notices were seemingly ignored before the certificate was allowed to run out.


Related content

  • Just 27% of policing websites have secure encryption, report says [1]
  • General election 2017: Greens website "most user-friendly" – but Labour wins battle of the traffic [2]
  • Message to Amber Rudd: Undermining encryption makes us less safe [3]

The site now appears to be back up and running, but not before the IT oversight had garnered a large amount of media coverage, as well as criticism and mockery on social media.

SSL certificates are used to provide an encrypted connection between web servers and internet browsers. The SSL protocol encrypts data that is typically comprised of plain text. This ensures that potentially sensitive information can be safely relayed between a website and the browser it is running on. 

There is a degree of irony in the fact that the Conservative's website woes have been caused by a lack of encryption, after home secretary Amber Rudd last year vowed to "combat" what she characterised as the helpful environment the technology provides for criminals - despite admitting that she did not understand [4] how it works.

The lapsed security certificate is not the only online faux pas made by the party today, after the @Conservatives [5] Twitter account wrongly announced that transport secretary Chris Grayling had been appointed as party chairman, in a tweet that was swiftly deleted. Immigration minister Brandon Lewis has subsequently been unveiled as the new party chairman.

PublicTechnology had contacted the Conservative Party requesting comment on the website problems and was awaiting response at time of publication. 

 

About the author

Sam Trendall is editor of PublicTechnology

Tags
Fraud, Risk and Governance [6]
Cyber Week [7]
Tech [8]
Categories
Defence and Security [9]
Government and politics [10]
Dods PublicTechnology.net is a Dods Group plc title

Site Sections

  • Home
  • News
  • Opinion
  • Features
  • Private Sector Insight
  • Cyber Week
  • White Papers
  • Events
  • Partner Directory
  • About
  • Contact

Services

Dods PeopleDods MonitoringDods ResearchDods EventsDods Training

Media & publishing titles

Politics HomeThe HouseThe Parliament MagazineHolyroodTotal PoliticsPublic Affairs NewsCivil Service WorldPublicTechnologyTraining JournalDods Parliamentary CompanionVacher's Quarterly The European Union and Public Affairs Directory

Dods events

Westminster BriefingDigital Health & Care ScotlandMEP AwardsThe Skills SummitScottish Public Service AwardsPublic Sector Procurement SummitPublic Sector ICT SummitCyber Security SummitCyber Security 2017Training Journal Awards

Partnership events

The Health and Care Innovation ExpoCivil Service LiveCivil Service AwardsChief Nursing Officer for England's SummitWomen into LeadershipThe Youth Justice ConventionSocitm Spring ConferenceNHSCC Annual Members' EventDods at Party Conference
Privacy PolicyTerms & ConditionsAdvertisingSponsorship Subscriptions
  • Registered office: 11th Floor
  • The Shard
  • 32 London Bridge Street
  • London SE1 9SG
  • Company number: 04267888
  • © Dods Group plc 2017

Source URL: https://www.publictechnology.net/articles/news/failure-renew-security-certificate-fells-conservative-website

Links
[1] http://www.publictechnology.net/articles/news/just-27-policing-websites-have-secure-encryption-report-says
[2] http://www.publictechnology.net/articles/news/general-election-2017-greens-website-most-user-friendly-%E2%80%93-labour-wins-battle-traffic
[3] http://www.publictechnology.net/articles/opinion/message-amber-rudd-undermining-encryption-makes-us-less-safe
[4] http://www.publictechnology.net/articles/news/amber-rudd-%E2%80%98i-don%E2%80%99t-need-understand-encryption-understand-it%E2%80%99s-helping-criminals%E2%80%99
[5] https://twitter.com/Conservatives
[6] https://www.publictechnology.net/tags/fraud-risk-and-governance
[7] https://www.publictechnology.net/tags/cyber-week-0
[8] https://www.publictechnology.net/tags/tech
[9] https://www.publictechnology.net/categories/defence-and-security
[10] https://www.publictechnology.net/categories/government-and-politics