Since 2015, Google has been adamant about putting an emphasis on connection security, namely by putting pressure on websites to do away with “HTTP.” For the past two years, Google has been preaching to the choir, that websites, companies, and users, should convert from “HTTP” to “HTTPS.” And for good reason. They are safer. HTTPS based websites are safer and will protect users from hacks or criminal attacks to a user’s personal and financial information.
Parisa Tabris, who is in charge of protecting billions of Google Chrome users and heads Google’s security team, told Yonhap News Agency, HTTP websitesare more and easily vulnerable to attacks or what Google refers to as, “man in the middle.”
HTTP still accounts for half of the world’s website population. Yonhap also reported that beginning in 2017, Google began protecting its users by implementing measures that labeled sites not strongly secure or encrypted with a warning saying, “not secure.”
Tabris, who used to be a hacker, made it clear that HTTPS doesn’t solve all security problems but it’s a solid foundation in the right direction. She also addressed the idea that HTTPS is a cost burden for sites and companies. She told Yonhap that ten years ago, a site could make that claim. Today, that’s just not true. As Tabris has said, switching over to HTTPS may not be that easy but it is necessary.HTTP still accounts for half of the world’s website population. Yonhap also reported that beginning in 2017, Google began protecting its users by implementing measures that labeled sites not strongly secure or encrypted with a warning saying, “not secure.”Tabris, who used to be a hacker, made it clear that HTTPS doesn’t solve all security problems but it’s a solid foundation in the right direction. She also addressed the idea that HTTPS is a cost burden for sites and companies. She told Yonhap that ten years ago, a site could make that claim. Today, that’s just not true. As Tabris has said, switching over to HTTPS may not be that easy but it is necessary.
Emily Shecter agrees. She is from the Google Security Team. Shecter posted on Google Chromium and confirmed that Google is ramping up their security measures saying these provisions or efforts (http) are marked clearly “not secure” if the sites involve passwords or credit card fields. In two situations, a user will see “not secure” starting in October of 2017. The first situation being if a customer submits data on an HTTP page and the other situation is any HTTP site visited in incognito mode.
Expect these efforts to increase, according to Shecter. Google will continue to implement the “not secure” campaign on all HTTP pages even outside of incognito mode.
More security to protect user's private and financial information is a good thing. A user can use free HTTPS encryption from sites like Duda. Duda released an article this month showing how easy it is if you’re their customer. You simply need to publish and configure your site, go to the settings section, click on “Site SSL.” Then the user is taken to another site called, “enable HTTPS.” This will grant a user a newly generated SSL certificate, making your site more secure and in compliance with Google’s security connection campaign.
If that all sounds too daunting, DMEI uses Duda to create and maintain business websites. DMEIwill do that for you and your business today. Contact DMEI for the health and growth of your business.