HTTPS is the secure version of the hypertext transfer protocol (HTTP), the delivery method in which a website’s data is transferred. You may recognise it from visiting websites that display a green padlock icon in your browser URL bar. HTTPS will establish a secure connection between the client and the server to deliver data.
You may be thinking, why is this important? My visitors dont need a user account to access my website, surely it’s just something for organisations like banks.
As technology evolves, we most keep up with it to stay afloat. And this is one area which we need to be in on.
On 30th April 2015, Mozzilla (Firefox web browser) announced that they would be phasing out support to non-secure HTTP. This doesn’t mean a non-HTTPS website will stop working, it means new features will require HTTPS. Eventually though, down the line you can expext non-HTTPS websites to stop working.
Google also use HTTPS as a ranking signal, due to the benefits of having a secure website.
Using HTTPS has three features.
- Encryption. Data will be encrypted to enable client privacy.
- Integrity. Data will have its integrity verified to ensure it is unchanged.
- Authentication. Data will authenticate to ensure it has come from the source.
Let’s Encrypt is an open source project to enable free certification for HTTPS. Currently they are on schedule to go live in September 2015.
Eastern Digital plans to move over to HTTPS for all customers following it’s release.