In the beginning of this year, Google, eh, Google Chrome announced that they will be discouraging non-secure HTTP websites. Basically Google prefers secured websites in search rankings and after the announcement the measures were surely going to be tighter. But this time it is not just about the result rankings, if you own a website, especially a business website, you must move your site from a non-secure connection to a secure one. Why?
First reason, Google Chrome is world’s most used browser and whatever is its concern, concerns the internet. Therefore if Google Chrome said that they need you to add SSL to your site, you must. According to the announcement, Chrome will be warning users that the site, your site, they are visiting is not secure and may harm their privacy by allowing hackers or intermediates steal their details.
Now, the second reason is good enough as the first. It is more of a psychological reason. Irrespective of how Google is encouraging you now to use SSL, you must had done it already at yourself. Visitors & bots love the sites with green padlock (symbol of secure connection) on top. This gives them the trust to browse a site without fearing if any external power, like government agency or hacker is watching their browsing activities. As a regular blog scroller, I love reading & commenting on the sites that are hosted on a secure domain.
If there had be a third reason it should be the shaming technique Chrome is going to use now and on.
Google Chrome will be indicating the websites without secure connection with alerting symbols in the browser’s address bar. According to some press releases, Chrome will be straightforward as to say a site not on HTTPS, Not Secure with a red warning next to the domain.
So if you are reading this and you own a website, you must understand the consequences and take a step to upgrade your site to a secure connection.
Well, as an owner of a small or medium website, you may think of this to be unfair, as not every site deals with personal details of visitor. Even though if you think that you are being forced onto this, rule is the rule.
You can buy an SSL certificate from your domain or hosting provider and get started with it in minutes. But did you really waste your time on this article just to know that you would have to buy something in order to use it? No. There is a free alternative to almost everything, and there exists one for this too. Instead of just knowing the free way, let’s pick all options one by one.
If your website is on a shared web hosting server, including blogger, you will have to buy an SSL certificate from your domain provider and install that on your webhost. But for this to work, I figure, your domain & hosting providers must be the same. If you buy a separate SSL certificate for your domain that is managed elsewhere than your webhost, you might not be able to install the purchased certificate on your webserver.
Once word solution, Cloudflare.