Why Does Google Show “Not Secure” While Connecting With Few Websites?
With the launch of Chrome 68, Google now labels all non-HTTPS (Hyper Text Transfer Protocol Secure) website as “Not Secure”. Websites that fail on implementing this protocol has nothing but to face the name and shame by Google as the websites operating under “unencrypted connections”. Google has now created a pledge on shoving the websites towards a well-encrypted HTTPS connection.
What is an “HTTPS” Website?
They are nothing less than the websites we generally browse through but, an HTTPS website assures your credentials to be safe from hackers and eavesdropping third party channels.
While visiting a website, the address bar shows a green lock icon and the word “Secure” displayed as a symbol of your website to be HTTPS. The world has shifted to the web and safety is the need of the hour for all big/small organizations exploring their business on the web. Hence, the HTTPS mark is pivotal for running the website sturdily.
The e-commerce websites where you enter passwords or provide credit card credentials, or such sensitive financial data on the web, if HTTPS, prevents the hackers eavesdrop on the data being shared between your device and the server.
This happens only when your web browser uses secure SSL encryption. HTTPS provides security against virulent groups that masquerade the websites.
For instance, if a user sign-in to Google through public Wi-Fi hotspot, chances are, they could be redirected to pages that impersonate Google. Google displays a secure SSL certificate to its pages. Failing this could be a trick set-up by hackers to gather your password and sensitive credentials.
Another amazing benefit of HTTPS servers is no hacker could eventually trace your search path. However, they could only view the website address you connected with. For example, if a user is searching for information over Wikipedia, the ISP and any third party will know you are searching Wikipedia but not “what content” you are searching for or reading.
Why HTTPS is Important?
With the launch of Chrome 68, you can witness a “not secure” label on the address bar if the website you are surfing is an unencrypted one. On initial days, Chrome could only indicate an “i” marked in the circle for the unencrypted website but now, if you click the “Not secure” text, Chrome will respond it with “Your connection to this site is not secure”.
Surfing through websites that are not HTTPS-encrypted can lead to compromising your valuable assets shared through the web as the eavesdroppers could get clear information regarding which website you used and what documents were exactly shared. Moreover, the ISP (Internet Service Provider) knows what you are searching through the web; they could sell your search information in ad-targeting.
Many malicious groups are sitting between your search results and the website to compromise the data being shared. The credentials and financial data you share with a website can easily get manipulated by this middle-man, resulting in websites receiving compromised data. This could function both vice versa. Also, your search results start showing ads relevant to your search history. Many of such ads are malware inserted firmly into the web channels by these groups.
An HTTPS-encrypted website is an answer to preventing all such tricky practices.
What Google has its Say in This?
Google and other giant companies like Mozilla are coming forward to shove the web towards secure HTTP (Hyper Text Transfer Protocol) and HTTPS (Hypertext Transfer Protocol Secure). Back then, HTTPS websites were costly to afford and many website owners couldn’t afford it. Websites of banking sectors and such sensitive channels are HTTPS encrypted. Also, thanks to the technological advancements that help update HTTP into HTTPS – A more secured and faster version of the encryption process.
With such great advancements, Google has witnessed a 75% hike among websites using HTTPS encryption. Google, with other such companies, are waging through these long-term campaigns and are warning the websites using HTTP (an outdated technology now), to switch over to HTTPS (an advanced, secured, and trusted technology).