EMERGENCY INFORMATION - To be displayed on a situational basis. Hidden otherwise. Due to weather conditions, the Florida Highway Patrol has closed the Sunshine Skyway Bridge. More…

Office of Information Systems

Office of Information Systems / Documents and Publications / Consultant Managed Web Sites

Consultant Managed Web Sites

Picture of a keyboard
 

FDOT Internet Redesign Project - External Web Author/Developer Resources

The resources for the Internet Redesign Project are now available for all external partners who manage FDOT-related websites. The new internet templates and application files are available for download at the following web address:

For questions regarding the above resources, please e-mail the FDOT-InternetRedesignTeam@dot.state.fl.us.

Requirements:
In an effort to comply with Federal Section 508 of the Rehabilitation Act, All Information Technology (IT) provided by Florida State Agencies must meet requirements as documented in the Accessible and Electronic Information Technology, Florida Administrative Code, Rule Chapter: 60-8.

A Comprehensive Tools List is available by the Department of Management Services. This listing provides an array of tools and resources that may be of assistance throughout the lifecycle of the website. The FDOT will require a Voluntary Product Accessibility Template (VPAT). The VPAT is a tool used to document a websites conformance with the accessibility standards under Section 508 of the Rehabilitation Act. A completed VPAT must be provided to the FDOT Project Manager.

Recommendations and Additional Information:
Protection of FDOT data is of upmost importance. In order to protect the Department’s resources the following items should be considered and mitigated.

Website/Application Security Risk Considerations:
Weak administrative security controls (e.g. weak or shared passwords)
Directory traversal attacks

Data Risk Considerations:
Hosted sites should not contain information about the FDOT internal network or details about FDOT access controls that could be used to compromise our network.

Other Considerations to Mitigate Security Risks:
Protection against Denial of Service (DoS) or Distributed Denial of Service  (DDoS) attacks
Incident response procedures
Responsibility for mitigating incident responses
Protection against web crawlers
Non-FDOT content or links on the FDOT site
Appropriate finalization and/or cleanup of the site after the project is complete

The FDOT supports Consultant Managed Static Websites and encourages the development teams of such websites to become familiar with the Department’s in-house Standards: