- This topic has 0 replies, 1 voice, and was last updated 6 months, 1 week ago by Yusuf.
- February 21, 2020 at 11:31 pm #86436Participant@yusuf
Security is a very important issue on the internet. In the era of e-commerce and online payment solutions, users need an assurance that they’re walking on safe ground. HTTPS is the secured version of the HTTP and it is identified by the lock symbol situated in the address bar. It provides a secure medium for transferring data, by encrypting the website’s connection. HTTPS creates a secure connection between the web browser and the server using SSL (Secure Socket Layer), and TLS. These technologies are used to secure the data sent from the web browser to the server through cryptographic protocols.
HTTPS can be called the secure version of HTTP. It provides secure means of communication, the integrity of data sent from client to server, faster performance by encrypting and shrinking data size, better SEO ranking, and a host of many benefits.
The Risk Involved in Using HTTP
When connected to a website through the HTTP, there is little or no in-built security on the protocol. This means that any information transmitted between the client and server can be monitored because the data is transmitted in plain text. Sensitive pieces of information like email, social media, and credit card passwords can be read easily by a hacker who is connected between the source and the destination of the data transfer. This is a critical issue that made browsers notify HTTP users with a “non-secure” symbol. The icon appears by the left side of the web address, in the address bar.
Do not input any sensitive data on a non-secure website. You may think you are transacting on a genuine website. but you’re probably redirected to an impostor’s website. Where everything appears genuine, the impostor can even clone a website to a near-perfect precision, to look exactly like the businesses they are pretending to be, and no obvious difference can be spotted. Any sensitive data sent through HTTP is guaranteed to be read by an attacker without much difficulty.
HTTP is an insecure protocol for transmitting sensitive data because the connection is not encrypted.
The Advantage of HTTPS Over HTTP
HTTPS offers security. Institutions that offer sensitive online transactions like e-commerce, or banking, usually redirect users to their secured server that uses HTTPS. the website’s SSL security certificate is checked and verified by the browser, this ensures that the website is safe for any transaction. Data sent over HTTPS protocol tends to be more secure. the HTTPS is secure and has added encryption to data, which makes services like e-commerce and online banking safer. HTTPS has improved on the shortfalls found in HTTP.
Why Should Everyone Adopt HTTPS
On the HTTP protocol, the data transfer is done in plain text. The data can be read by anyone, tampered, and compromised. There are laws in place that enforce the need to set up security measures, to protect users’ private data from being stolen. Recently we’ve seen the rise of data theft, where users’ private data is stolen and sold to companies at a hefty price tag. To prevent this from happening, HTTPS is needed to establish encryption on the data being transferred.
This will secure the data, and provide privacy, that government and spy agencies will find it difficult to eavesdrop on your browsing activity.
Advocating For the Adoption of HTTPS Over HTTP
Most browsers are flagging websites that don’t use the HTTPS as “Non-Secure”. This will create more awareness of the benefits of using HTTPS over HTTP. The popular search engine, Google, also ranks websites with HTTPS high and gives them priority over their HTTP counterparts. This provides more reason for websites to migrate to HTTPS.
Checking Whether You’re Connected to a Website Using HTTPS
The easiest way to check whether you’re connected using HTTPS is, the web address starts with
"https://". Normally, there should be a lock icon by the side, which when clicked, provides some details about the security information of the website.
Browsers may have different ways of showing the security of a website, but the lock icon is a common feature, used by most web browsers.
When connected to an unfamiliar network, and connected to a website that requires sensitive data, be careful to observe that the web address contains
"https://"and the lock icon in the address bar. The Absence of
"https://"on a website’s address is a red flag, by no means should you enter your credit card details into it. You may be on an impostor’s website waiting for you to drop your private details for them to exploit.
Careful, Seeing HTTPS on the address bar Might Not Be Enough
Phishing is a type of attack, where the attacker falsely appears to be a genuine business. The attacker collects users’ private data through that fake website. Some intelligent phishers know that people won’t fall for websites without HTTPS and the lock icon. They can go the extra mile of obtaining a security certificate for their scam websites. They usually employ a trick of deceiving users to think they are connected to a secure server. You will probably see an address like
https://bank.com.example.com, the address shows that you’re connected to a secured website, but the reality is, you are not connected to your bank’s website but to a domain called
Thank you for reading, stay secure.
- You must be logged in to reply to this topic.