HTTPS and Chrome Header

From July 2018, with the latest Chrome update, the web browser will begin to mark all HTTP sites as “not secure” in an effort to ensure the web can be a safe and secure place for all users. The push towards ensuring that sites all have the correct certification has been gradual, but with the biggest internet browser, Chrome, pushing out their biggest update ever towards supporting the integration of HTTPS as the default across the web, it’s looking to be of even more importance. In revealing this upcoming July update, Emily Schechter Chrome’s Security Product Manager also announced that currently:

  • Over 68% of Chrome traffic on both Android and Windows is now protected
  • Over 78% of Chrome traffic on both Chrome OS and Mac is now protected
  • 81 of the top 100 sites on the web use HTTPS by default

With this, the move towards an HTTPS-dominated web was in the right gear.

There are many advantages that switching to HTTPS can have for your site: from bringing about a big boost to the security of your site that’ll ensure the site encrypts data and communication that goes through the site – ensuring that the website user is protected, to increasing your sites ranking on the search engine (since it’s one of Google’s many ranking factors). The switch to HTTPS also puts your site in a reputable light for its many users who may visit your site to make purchases or even explore your site, as there would be nothing worse than seeing your site listed “not secure” when you’re trying to maintain users!

Other than advantages, as per, the lack of HTTPS on your site is only going to get worse in the negative effects that’ll it cause. We’ve already seen that Google had begun downranking unencrypted sites in 2015, with switching to HTTPS being an advantage for SEO-purposes, but as the web moves towards complete HTTPS dominance, the like of the warning that Google is set to implement on “not secure” non-HTTPS site is likely to become even more significant, with web browsers and search engines potentially directing users to other sites that have the correct web security. Sites that offer ecommerce and still continue on the path of HTTP are likely to be at the bottom of the bunch when it comes to the negative factors that will be played against them.

How to implement HTTPS onto your site

The most recommended (and cheapest) way to implement HTTPS is a service called Let’s Encrypt, this service is a free, automated and open certificate authority that allows a website developer to easily implement HTTPS on to their site and configure it for use. A lot of web hosting providers are too now offering HTTPS certificates as default (such as WordPress) or as an add-on, so there is no reason why HTTPS should not be implemented to any domains that you may own.

For more information or assistance for adding HTTPS, you may contact us at Silkstream via our contact us page, or through calling on 01702 460922.