Chrome will identify sites with no SSL certificates as insecure

Chrome will identify sites with no SSL certificates as insecure

In recent years, websites have taken security issues much more seriously. Attacks on the Internet are increasingly numerous, complex and dangerous, so protecting the data of users became a must. One of the most marked recommendations is for administrators to adopt HTTPS data encryption. And during the last year, a whole series of websites under the old HTTP protocol were gradually (but with increasing multiplicity) signaled as “unsafe”. But as of this 2018, precisely in the month of July, an update of the Chrome browser (its version 68) will mark all of the HTTP sites (that is, all those that do not have HTTPS encryption) as “not safe”.

In the next Chrome 68, the address bar will signal all HTTP pages as “Not secure”

The developers have been migrating their sites to HTTPS, making the web safer for everyone. Last year’s progress was incredible and continues since then:

  • More than 68% of Chrome traffic on Android and Windows is now protected with HTPS encryption
  • More than 78% of Chrome traffic on Chrome OS and Mac is now protected with HTPS encryption
  • 81 of the top 100 sites on the web use HTTPS by default

Chrome is committed to helping and facilitating the configuration of HTTPS for everyone who has decided to move. Mixed content audits are now available to help developers migrate their sites to HTTPS in the latest version of Lighthouse’s CLI Node , an automated tool to improve web pages. The new audit of Lighthouse helps developers to find what are the resources of a site that are called with HTTP (for example, an image or a library of styles), and which of them are ready to be updated to HTTPS simply by changing the reference from the sub-resource to the HTTPS version.

Lighthouse is an automatic development tool to improve web pages and in this address you can find instructions with the download link for Chrome.

The new Chrome interface will help users understand that all HTTP sites are not safe today, encouraging administrators to migrate their websites to a secure network. It is enough to reflect that, unlike the HTTPS protocol, HTTP transmits our data in plain text, without encrypting , allowing any malicious user to connect to the same Wi-Fi network and easily spy on our communications with the intention of capturing and stealing sensitive data. such as passwords or credit cards. 

It may seem somewhat violent that a browser decides to mark all HTTP pages as insecure , but the truth is that, today and with the powerful tools that hackers have, they are!