When Google announced that HTTPS would be a ranking signal may website & web application owners moved to HTTPS from HTTP.
But it’s important that you know about it, what it is and whether it really protects you.
Many People asked me whether it really protects their website?
So here is all about it.
What is http?
It stands for hypertext transfer protocol which is the primary method by which messages and actions are transmitted across the web. It works on port 80
Now Wtf is the https?
Haha.. It’s a secure version of http. Yes that s stands for secure .
It is made secure by encrypting information as it is transfered from browser to the server. Also it works on different port 443.
If you want to run your website over https you need a ssl certificate which can be bought by your domain or hosting provider.
You can also create your own SSL certificate but as it is not signed, browsers will show a error that connection is not secure!
Now back to the topic! HTTPS can be important in many cases like when you are collecting sensitive information like credit cards. It protects from MITM(Man In The Middle Attack), HTTPS doesn’t protect your website from XSS or SQLi or any other type of attacks. It’s important to understand that even if you’re implemented HTTPS for the right reasons, it’s not infallible. It only protects the information on its way, that’s it. When that information is on your server it’s your responsibility!
Many people ask: Does HTTPS make our website or web application more secure?
The simple answer is no, it does not. HTTPS secures information in transit but does nothing to secure the information that is resident on a server.
It’s important to know that HTTPS has nothing to do with web application security.
Implementing HTTPS is a good idea where sensitive data is transfered but you should take care of it once it is on your server.
Whenever taking about security, HTTPS is a small part of it. Using a SSL certificate doesn’t make secure your whole website. But it’s important and you can’t ignore it.
Install a free SSL certificate from let’s encrypt or Shared SSL certificate + CDN + Caching + Security byCloudflare. Yes absolutely free.
It you liked this post kindly share it with your friends, family & acquaintance!
Subscribe to our newsletter to updated via email!