An Overview Of SSL Changes – What It Means For Your Website
In today’s ever-changing digital landscape, it’s important that companies Google’s best practices to make sure that they continue being competitive in their relevant online markets. With Google being the most dominant and influential company on the internet, it’s key for them to keep abreast of all the threats and opportunities that the internet creates. Accordingly, Google releases an assortment of updates annually: new features, bug fixes, and the majority pertaining to the very secretive Google search ranking algorithm.
What’s important though, is that all online companies that use Google-related services (virtually every online organisation), are aware of extensive changes that may influence their SEO, performance, and ultimately their bottom-line. The internet is in a continual state of change, so online companies have to be versatile and adjust to new Google updates as soon as possible to make certain that they aren’t adversely affected by these new releases.
The most significant Google update that has recently altered online companies relates to Google Chrome v62, which was released in October of this year. The Google Chrome web browser is used by almost 50% of all online users, so it’s quite important that online enterprises implement the specific changes as quickly as possible if they wish to reduce any harmful repercussions.
What has changed in Google Chrome v62?
In the Google Chrome v62 update, Google has altered the way in which it marks non-secured (HTTP) pages. If a non-secured (HTTP) page saves passwords and credit card information (which is stored in a plain text file), they are vulnerable to phishing sites that can basically steal this information from users that wrongly believe they are giving their personal information to an honest company. The Google Chrome browser will begin marking any text input field and web address bar as ‘NOT SECURE’ for HTTP pages.
This change will obviously bear upon millions of websites all over the world. Before the change, many non-secured websites weren’t affected by phishing attacks simply because they didn’t have a public-facing member login, and used PayPal or other offsite payment processors to accept online payments. Now, however, all websites will need to start securing their web pages considering that users will become afraid of succumbing to malicious attacks if they input their personal information into fields marked boldly as ‘NOT SECURE’.
How to make web pages secure?
For online businesses that would like to secure their formerly non-secured (HTTP) web pages, they need to encrypt the information being dispensed between their website visitors and their web server by incorporating an SSL certificate. Google are obviously pushing for a more secure internet than ever before, and they’ve chosen SSL encryption as a vehicle to do this. For website owners who would like to enable HTTPS on their web servers, here is an informative guide: https://developers.google.com/web/fundamentals/security/encrypt-in-transit/enable-https?hl=en. The following link is an additional guide on how to avoid the ‘NOT SECURE’ warning in Google Chrome which is intended for website developers: https://developers.google.com/web/updates/2016/10/avoid-not-secure-warn.
What this means for online businesses?
The recent Google update denotes that HTTPS and SSL encryption will become the norm across all web pages online. One way or another, each online provider will need to secure their web pages using SSL encryption whether they like it or not, or users will simply opt for a competitor that does.
What this also means is that not all websites using SSL encryption should be trusted, and there will be a consequential increase in phishing sites using HTTPS also. Phishing sites can simply use fake SSL certificates to circumvent the ‘NOT SECURE’ warning by Google Chrome and make their websites appear legitimate. This will make the differentiation between phishing sites and real websites more challenging than ever. Online businesses that use an Extended Validation Certificate (EV SSL) will be the most trusted websites on the net due to the fact that it will be remarkably difficult for phishing sites to copy the authenticity that EV SSL provides.
Making all websites employ SSL certificates to demonstrate their authenticity will only increase the number of phishing sites that do the same. At the end of the day, however, SSL encryption will at some point become required, so if you need any help in securing your website with SSL encryption, get in contact with the digital specialists at Internet Marketing Experts Ellenbrook by calling 1300 595 013, or visit their website for further information: https://internetmarketingexpertsellenbrook.com.au