Google Chrome has started to mark sites as “Not Secure” if they don’t have HTTPS at the start of their url.
If you have a website that has a login area that requires customer passwords, or you collect credit card information or personal data from visitors then you will now be affected by Google Chrome marking your site as ‘non-secure’ if you do not have HTTPS at the start of your url and have an SSL certificate (Secure Sockets Layer).
Having HTTPS (HyperText Transfer Protocol Secure) at the start of your url shows it is a secure connection for passing information between web servers and clients. It acts as a layer of security encrypting data to prevent ‘eavesdropping’ or information being stolen by hackers. It is a way of customers’ computers authenticating the communication they have with your website.
What is an SSL certificate?
Globalsign, who build and maintain high-scale identity management solutions for devices, people and things comprising the Internet of Everything, describe SSL Certificates this way:
“SSL Certificates are small data files that digitally bind a cryptographic key to an organization's details.”
Once you have activated the SSL a padlock symbol will appear and the https protocol (which allows secure connections from a web server to a browser) will show at the front of your url. SSL certificates are usually provided by third-party web filters and they allow you to set up your web filter to detect online threats.
According to Google Support “SSL inspection is only supported on Chrome browser version 30 and later” and "from January 2017, Chrome 56 will label HTTP pages with password or credit card form fields as 'not secure', given their particularly sensitive nature".
What are the dangers of not using HTTPS?
The Google Security Blog states that “when you load a website over HTTP, someone else on the network can look at or modify the site before it gets to you.”
People are more and more concerned about the security (and distribution) of their information nowadays and protecting their credit card or personal details it of the utmost importance.....
- See more at: https://www.webigence.com/blog/is-your-site-https-secure
Webigence are in the top 1% of Microsoft Partners with the Gold certification for Application Development and are specialists in ASP.NET, Xamarin and Microsoft Azure technology. Talk to us about your new project by emailing firstname.lastname@example.org.