Chrome will start marking HTTP sites as 'not secure'

By midian182 ยท 5 replies
Feb 9, 2018
Post New Reply
  1. The last few years have seen Google pushing for more sites to adopt HTTPS encryption, and it will soon offer another incentive for them to make the transition. Starting this July, with the release of Chrome 68, Chrome will mark all HTTP sites as “not secure.”

    Right now, Chrome shows a green padlock and a “secure” sign on HTTPS sites, whereas landing on an HTTP page displays only the web address. But with Chrome 68, all HTTP sites will carry a warning, which you can see below.

    The move comes after Google began downranking HTTP sites back in 2015. Later, the release of Chrome 56 saw HTTP pages that collect passwords or credit card details marked as “Not Secure.”

    Google’s quest to get more sites moving over to HTTPS has been a successful one. The company revealed that 81 out of the top 100 websites now use it as default. It added that over 78 percent of Chrome traffic on both Chrome OS and Mac is now encrypted, while 70 percent of Chrome traffic on Windows is now protected. The figure for Chrome traffic on Android stands at 68 percent.

    Some websites have avoided moving to HTTPS because of the cost and difficulty involved with the process, but Google is trying to make the procedure as easy as possible. A new audit feature in Lighthouse, an automated tool for improving webpages, lets developers find which resources are loading via HTTP, and identifies those than can be upgraded simply by changing HTTP to HTTPS.

    Back in December, it was revealed that an increasing number of phishing schemes were taking advantage of HTTPS. Many people believe the green padlock is a sign of a site’s trustworthiness, when it merely shows the data is encrypted in transit.

    Permalink to story.

     
  2. TheBigT42

    TheBigT42 TS Addict Posts: 172   +88

    Good...Is there a problem with this?
     
  3. yRaz

    yRaz Nigerian Prince Posts: 2,405   +1,497

    Can chrome please fix the memory leak that's been in there since the start? I mean, jeez it's going on like 10+ years now.

    Like what are you doing with all the data your collecting off of me? Can't you tell from spying on me I need to reset my browser like twice a day? If the VPS I used didn't require chrome I'd be all over firefox
     
  4. captaincranky

    captaincranky TechSpot Addict Posts: 13,346   +2,841

    Firefox with the "NoScript" extension, even blocks "googleanalytics", my prince.
     
    drjekelmrhyde likes this.
  5. LeroN

    LeroN TS Member Posts: 47   +18

    Yes, it is. Workers in my company use up to one hundred websites. Maybe even more. Now I recommend do not use Edge and next candidate is Chrome. The browser that is supposed to be not good for the business enviroment. I can't spend all my time to resolve issues of websites that have not a secirity certificate.
     
  6. TheBigT42

    TheBigT42 TS Addict Posts: 172   +88

    Dude all it is going to do is inform the end user that the website is not secure. That is what the end user needs to know. Not telling users where or not a site is secure or insecure is very dangerous.
     

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...