For the past several years, Google has been a strong advocate for the adoption of HTTPS (Hypertext Transfer Protocol Secure) encryption in websites. The company has always discouraged users from having an unsecured website, but they are taking things to the next level this year. Starting July, Chrome will mark all HTTP sites as “not secure” with a glaring warning sign in its address bar.
Emily Schechter of the browser’s Security Team announced last February 8th that version 68 aims to promote the migration of websites to HTTPS. This technology implements a secure socket layer that keeps each user’s browsing data safe from cybercriminals who could be spying to get sensitive information, such as their credit card details and social security numbers.
The statement also lays out Chrome’s long-term plan for discouraging unencrypted web connections. Google Search had begun down-ranking unencrypted pages in 2015. And their efforts paid off because as of last year, 81 of the top 100 sites on the web use HTTPS by default.
This pressure urges developers to upgrade. To prevent further challenges, Chrome makes sure that their transition will be as hassle-free as possible. Mixed content audits are currently available to assist developers in setting up HTTPS using the latest Node CLI version of Lighthouse, a preset tool for enhancing web pages.
Chrome’s new interface hopefully informs more people of the risks involved with using HTTP connections. The lack of security in these sites makes the injection of malware so much easier for hackers.
HTTPS is cheaper and easier than ever before, and it unlocks both powerful new features and performance updates that are too sensitive for HTTP. With this, both servers and users are protected from anyone who tries to intercept their connection.