From HTTP to HTTPS, why?
07 Mar

From HTTP to HTTPS, why?

Why switch to HTTPS?

Although this procedure is relatively simple, it does require some clarification and precautions.

SSL & HTTPS definitions

First of all, let’s start with a few definitions and reminders:

SSL: Secure Sockets Layer is a secure Internet exchange protocol, originally developed by Netscape. This is the security technology standard for establishing an encrypted link between a web server and a browser. It ensures the privacy of data exchanged between the web server and browsers.

HTTPS: HyperText Transfer Protocol Secure, literally “secure hypertext transfer protocol”. Https is the combination of HTTP with SSL or TLS encryption layer. Also, The HTTPS allows the visitor to verify the identity of the website he accesses and guarantees the confidentiality and integrity of the data and validates the visitor’s identity if he is also using a client authentication certificate.

The difference between HTTP and HTTPS:

There are many criteria that differentiate HTTP from HTTPS, here are the 3 main ones:

  1. The URL scheme:
    • HTTPS URLs start with “https: //” and use the default port 443.
    • The HTTP URLs start with “http: //” and use port 80.
  2. Security: HTTP is not secure and is subject to many attacks, which can let attackers gain access to sensitive information, while an HTTPS-only website is designed to resist and protect against such attacks.
  3. Network Layers: HTTP operates on the highest layer of the TCP / IP model that is the application layer. The secure SSL protocol works as a lower sublayer of the same TCP / IP model, but it encrypts the HTTP message before it is transmitted and decrypts it on arrival. It can thus be said that HTTPS is not a separate protocol, but refers to the use of ordinary HTTP over an encrypted SSL connection.

Why use HTTPS?

As a preamble, the HTTPS is especially useful on unencrypted networks (such as Wi-Fi), or anyone on the same local network can “sniff” via packet sniff data and access sensitive information.

When you serve content from your website via HTTPS, you are assured that no one will change the way information is received by users. If you are doing business online, you will need SSL. This is the best way to protect your users’ data and defend against identity theft.

When you serve content from your website via HTTPS, you are assured that no one will change the way information is received by users. If you are doing business online, you will need SSL. This is the best way to protect your users’ data and defend against identity theft.

For a better SEO? Secured sites via SSL also benefit from an advantage for their referencing in the search results pages. This is what Google has announced that today includes the encryption of sites to its list of positioning criteria. I remain strongly mixed on the premium SEO / HTPPS

Partager