You're Here - Green Frog Interactive | Blog | HTTP or HTTPS?




I'm sure most of us know what HTTPS is, we've all seen that little green padlock next to the address bar, it tells us that the website we're on is safe, and it is safe for us to submit personal details such as bank details, but what exactly does it mean?


Well in its simplest terms, the 'S' in HTTPS means 'Secure', HTTP on its own means HyperText Transfer Protocol, which is a simple protocol for sending text based messages across a network, with HTTPS it is exactly the same, apart from the text is encrypted, which means it can't be intercepted, or leaked through Browser Sniffing software.


A website is made secure by using an SSL Certificate, SSL (Secure Socket Layer) is the item which encrypts the text sent between the user and the web server, and it is an additional layer in the process which sits between m both. SSL Certificates are an industry standard used by millions websites. Traditionally an SSL Certificate will contain your domain name, business name, address and an expiration date, SSL Certificates are limited to only one domain name, which means they can only be used on the domain they were registered for, and each one is different.


HTTPS has been a must on eCommerce websites since day one, but over the years more and more businesses started using it as it creates trust between the website and the user, even on websites that aren't handling banking details they help boost security, if your website has a login page, or comments sections, or anywhere where the user can submit data, unless you use HTTPS that data is sent plain text, ie as it is written, and personal data such as names, email addresses etc can be intercepted and used maliciously.


A very popular misconception is that a website isn't important enough, or good enough to need an SSL Certificate, people still believe that only websites you can buy things on need to be secure, but not anymore, in 2014 Google launched their 'HTTPS everywhere campaign', and they also announced that they will start using HTTPS as a ranking signal and rank secure websites higher over non-secure websites, which means that If you competitor has a secure website, they will rank higher than your website in the Search Engine Result Pages (SERPs). At the end of the day, anything, and everything could be a personal thing to one of your users, and they probably don't want that leaking.


Google and lots of other global leaders are committed to making the Web and safer place, in this day and age the vast majority of people live their entire life online, through our phones, tablets, computers, even our TVs and Kitchen Equipment, and even our whole house can be connected to the internet these days, you wouldn't want someone you don't know snooping round your house and belongings, so why should it be different for snooping round your online web history and things you've typed online?


We offer the option to all of our customers to include an SSL Certificate for just £15.00 per year, and if the proposed website will include sensitive data it is a non-optional extra. If you've already had a website from us it is very easy to configure and migrate your existing website from HTTP to HTTPS with no down time, and your websites visitors won't notice a thing (Apart from the little green padlock of course!) just send us a message and we'll let you know the process!


Posted 21st Sep 16, tagged with E-Commerce, HTTP, HTTPS