An Overview Of SSL Changes – What It Means For Your Website
In today’s ever-changing online world, it’s pivotal that companies stay up to date with Google’s best practices to ensure they continue being competitive in their respective online markets. With Google being the most powerful and influential company on the internet, it’s key for them to keep up with all the threats and opportunities that the internet generates. For this reason, Google releases a multitude of updates yearly: new features, bug fixes, and the majority pertaining to the very secretive Google search ranking algorithm.
What is necessary though, is that all online suppliers that use Google-related services (literally every online company), recognise significant changes that may bear upon their SEO, performance, and ultimately their bottom-line. The internet is in a constant state of change, so online firms have to be flexible and adjust to new Google updates as soon as possible to make sure they aren’t negatively influenced by these new releases.
The largest Google update that has recently affected online businesses relates to Google Chrome v62, which was released in October of this year. The Google Chrome web browser is used by virtually half of all online users, so it’s exceedingly important that online businesses incorporate the applicable changes as quickly as possible if they intend to reduce any unfavourable outcomes.
What has changed in Google Chrome v62?
In the Google Chrome v62 update, Google has reshaped the way in which it marks non-secured (HTTP) pages. If a non-secured (HTTP) page stores passwords and bank card information (which is stored in a plain text file), they are prone to phishing sites that can essentially steal this information from users that wrongly believe they are giving their personal information to an authorised business. The Google Chrome browser will begin marking any text input field and web address bar as ‘NOT SECURE’ for HTTP pages.
This change will visibly have a bearing on millions of websites all around the world. Before the change, many non-secured websites weren’t affected by phishing attacks simply because they didn’t have a public-facing member login, and utilised PayPal or other offsite payment processors to accept online payments. Now, however, all websites will need to start securing their web pages because users will become worried of succumbing to malicious attacks if they input their personal information into fields marked boldly as ‘NOT SECURE’.
How to make web pages secure?
For online firms that want to secure their formerly non-secured (HTTP) web pages, they must encrypt the information being distributed between their clients and their web server by incorporating an SSL certificate. Google are clearly pushing for a more secure internet than ever before, and they’ve chosen SSL encryption as a vehicle to do this. For website owners who wish to enable HTTPS on their web servers, here is a useful guide: https://developers.google.com/web/fundamentals/security/encrypt-in-transit/enable-https?hl=en. The following link is an additional guide on how to avoid the ‘NOT SECURE’ warning in Google Chrome which is aimed at web developers: https://developers.google.com/web/updates/2016/10/avoid-not-secure-warn.
What this means for online businesses?
The recent Google update denotes that HTTPS and SSL encryption will become the norm across all web pages on the internet. Sooner or later, each online firm will need to secure their web pages using SSL encryption whether they like it or not, or users will simply choose a competitor that does.
What this also suggests is that not all websites using SSL encryption should be trusted, and there will be a significant increase in phishing sites using HTTPS also. Phishing sites can simply use counterfeit SSL certificates to circumvent the ‘NOT SECURE’ warning by Google Chrome and make their websites appear genuine. This will make the distinction between phishing sites and real websites more complicated than ever. Online firms that use an Extended Validation Certificate (EV SSL) will be the most trusted websites on the web considering that it will be incredibly difficult for phishing sites to emulate the authenticity that EV SSL provides.
Making all websites use SSL certificates to prove their authenticity will only increase the amount of phishing sites that do the same. At the end of the day, however, SSL encryption will at some point become mandatory, so if you need any assistance in securing your website with SSL encryption, speak to the digital specialists at Internet Marketing Experts Bundaberg by phoning 1300 595 013, or visit their website for additional information: http://www.internetmarketingexpertsbundaberg.com.au