In May 2016 Per Thorsheim assisted the Norwegian government in developing a recommendation on how all government organisations should deploy HTTPS by default for all websites. These recommendations includes security settings to minimize risk of illegal Man-in-the-Middle attack, including eavesdropping and interfering with data.
Ordered by the department of justice, this will be the standard for all government organisations in Norway, and will also act as a strong recommendation for the private sector.
This standard will have a massive impact for the increased security & privacy for all citizens in Norway, as well as any visitors to government websites of Norway. This is also something we would like to for other countries to do as well.