HTTPS stands for ‘HyperText Transfer Protocol Secure’ (or “HTTPS” or “HTTP over SSL”) and it is the internet standard for secure communication between your browser and any web server.
The internet is NOT as secure as many people like to believe with HTTP only. Anyone can read what data you send to and from any server if the website is NOT using a HTTPS. IF you’re searching for “toenail fungus cure” or “STDs symptoms” on a website that does not use HTTPS, then anyone could potentially see this: the government, your neighbor, your Mom and even your spouse.
HTTPS solves that privacy problem by encrypting the communication end-to-end: Only your computer and the web server can see what data gets transmitted when a website uses HTTPS properly. Additionally, you can be sure you are connected to the right server as long as the green lock icon displays in your address bar like the image below.
4 HTTPS Myths We Hear ALL The Time – Don’t Believe The Hype!
SSL Myth 1 – You’ll hear people say, ‘If you don’t have sensitive information on your website or if you are not selling a product or service where someone buys online, then there is no need for an SSL certificate.”
There are many problems with this statement. The biggest one is as of October 2017, Google Chrome will start to warn people with this message:
In fact, if you have Google Search Console setup you may be seeing this message already:
Google is warning people that they need an SSL, otherwise Chrome will show a security warning.
The message above is warning you that your website is not considered secure. You can’t say they didn’t warn you and give you loads of time to get this fixed.
If you want to see how much of your traffic will be affected by this, just log into your Google Analytics and
look at the % of people who use Chrome.
SSL Myth 2 – We’ve heard people say things like, “SSLs don’t increase security.”
This completely wrong. HTTPS is so much more than making your website secure for online purchases. It also provides integrity and authenticity for your website visitors. When you don’t have HTTPs then your website traffic can be modified by a middleman like an ISP or airport WIFI. How do you feel that your website visitors can easily be redirected to malicious website courtesy of a shady DNS? Well, this is what your business is risking by not have SSL certificate on its website.
SSL Myth 3 – We’ve heard many people say things like, “You don’t need an SSL for a blog.”
Again SSL certificates do not make your website secure, but what they do is helps your website’s information travel securing between your website to the user’s device and vice versa. Does your blog collect information like ask people to sign up for a newsletter? If so, then you’ll want to have an SSL on your blog. Do you care that your blog readers will give the correct information from your website without getting intercepted by a hacker? If so, then you’ll want to have an SSL on your blog. So next time someone asks, “Do you need an SSL for your blog?” Scream back, “YES!!!”.
SSL Myth 4 – We hear people stuff like, “Encrypting all pages on your website will only slow them down.”
That is NOT TRUE! If fact, when it can be faster. It’s faster when you setup your new SSL on HTTP2, which
can ONLY be done once you have an SSL certificate. Another great visual to understand the difference between HTTP1 vs HTTP2 was done (see below).
Basically, HTTP1 is like getting your meal served by three different waiters on three different serving trays vs getting your food served by one waiter on one serving tray. Of course, HTTP2 will be faster!
5 Reasons You Should Move Your Company’s Website From HTTP To HTTPS
- It’s the right thing to do for your website users by transferring information securely from your website to their devices (and vice versa).
- You can have a faster loading website by using HTTP2 (see above examples). Again a net win for you and your users.
- You are future proofing for what the search engines and browsers (like Chrome), expect you to do.
- It’s a positive ranking factor, and that is straight from Google’s mouth. And Brian Dean’s research of analyzing 1 million search results proved that, in fact, many of the first page results on Google have a strong correlation with sites that have HTTPS.
Just see his image of this data below.
- Improved analytics data from referral traffic. When traffic passes to an HTTPS site, the secure referral information is preserved. This is unlike what happens when traffic passes through an HTTP site, and it is stripped away and looks as though it is “direct traffic” on most analytics software.
How Many Websites Are Adopting HTTPS?
It’s really no longer an option to have non secured website if fact here’s a great graph showing the adoption of HTTPS websites.
So we recommend you use HTTPs for your website and email to be secured. Simply buy SSL certificate and set it up.