In the process of assisting customers in optimizing, we found that certain websites are frequently invaded, so that the rankings continued to fluctuate, which in turn affected the SEO process. To avoid this situation, we should pay attention to HTTPS. Google has repeatedly promoted the importance of HTTPS in recent years. Website information security is an important optimization indicator in 2018. We really need to pay attention to the issue of website information security protection!
What is HTTPS?
Hypertext Transfer Protocol Secure (HTTPS) is the secure version of HTTP, which is the primary protocol used to send data between a web browser and a website. HTTPS is encrypted in order to increase the security of data transfer. This is particularly important when users transmit sensitive data, such as by logging into a bank account, email service, or health insurance provider. Therefore, no matter what the content of the website is, we recommend using HTTPS to ensure the connection security of website users.
Why does SEO need HTTPS?
In 2014, Google Blog published an article focusing on HTTPS will become one of the factors affecting ranking.
Or maybe we will tell you another way of saying it:
Tomato Digital’s SEO client’s website originally used HTTP, and the search result rankings were floating between the first page and the second page, but after the client’s website was adjusted to HTTPS, the client’s ranking was stable on the first page, and even start to compete for the top three search results.
Are HTTPS and SEO related?
Since Google has been very committed to promoting network security in recent years, many websites have begun to switch to HTTPS. Google first announced HTTPS as a ranking indicator in 2014, and in 2015 began using HTTPS pages as the priority indexed pages. Although this metric has no obvious impact on rankings, when you have the same qualifications as your competitors, having HTTPS is one of the key points you can win. Therefore, prevention is better than cure. Make sure you are ready to face up website security issues in 2018. Switching your website to HTTPS is the first step you should take!
Would it be safer for websites if they use HTTPS?
In September 2015, Google announced that the number of hacked websites had increased by 180%, for this reason, the number of websites requesting reexamination has increased by 300%. The number of hacked websites in 2016 has increased by approximately 32% compared to 2015.
What will happen if you continue to use HTTP?
In order to prevent the website from being hacked and other security problems, Google announced that they are improving Chrome’s standards for determining the security of HTTP webpage connections in November 2017. The purpose is to promote the update of HTTP websites to HTTPS. All HTTP webpages display a Not Secure warning.
In the future, a certain version of Chrome will default to HTTPS as the basic connection method, and will no longer use a padlock or secure labels.
Back to the original question: What will happen if you continue to use HTTP?
HTTP will be shown as an insecure website in the future, and there will be red labels highlighting and adding insecure, and if HTTPS is not set, the website may be invaded or maliciously attacked. In addition to the impact on SEO, if users find If the website has security concerns, it will also reduce the number of visits to the website, which is absolutely unfavorable for website operation. If there is any important information on your website such as membership information, credit card transactions, etc., don't hesitate! Be sure to update to an HTTPS website!
In addition, share some data with you:
The market share of “Google Chrome'' reached 67.45% in late March 2018. According to Google’s statistics, 68% of the web pages visited by Chrome on the Android and Windows platforms have adopted HTTPS, and the proportion of HTTPS web pages visited by Chrome OS and Mac OS version of Chrome is as high as 78%.
Why does it say “Your connection to the website may have a security hole” after installing HTTPS?
Usually, it’s because some links within the website still have HTTP, not all of them have changed to HTTPS. At this time, please open the source code of the webpage and search to see if there is a link that still uses HTTP. For example, if HTTP appears in CSS, pictures, A tag... and other places, it will be considered that there is a security vulnerability in the segment. For example, the web page is the link in the A tag. If it’s still HTTP, the green lock cannot be displayed correctly.
Which company's HTTPS is recommended?
There are many Certificate Authorities (CA) to choose from for domestic and foreign searches. However, it should be noted that the HTTPS issued by some organizations is not certified by Chrome and Firefox, so don't choose the one with it.
“I just don't want to upgrade to HTTPS, what else will happen?”
Every website will provide some website analysis tools, such as the most famous Google Analytics that provides analysis, you can know which way users come to your website, here are some of the more common traffic sources:
- Direct Traffic
- Search Traffic
- Referral Traffic
- Social Traffic
But if your website is HTTP, and the source website is HTTPS, you can only know that someone has visited your website, but not which website the traffic comes from. The most serious problem is when you have a cooperation article, but you can’t know how much benefit this cooperation brings to you. What a pity it is, that’s why we strongly recommend that you update to HTTPS.
What are the differences between SSL scheme types?
The basic certificates will be divided into three types: domain type, organization type, and extended type. The general differences are explained as follows:
- Domain Validation: only verify the ownership of the domain name, which is the fastest type of certificate that can be issued.
- Organization Validation: In addition to verifying the ownership of the domain name, it also uses third-party public information as the source of verification information, verifies the authenticity of the company by telephone, and presents the company information in the certificate information file to declare the company as a real existence and trustworthy.
- Extended Validation: This requires a full background check of an organization before the SSL certificate can be issued. This is the highest-level certificate type. The content of the verification is the same as the enterprise type. The difference is in the presentation of the security declaration. The enterprise type is presented in the certificate information file, while the enhanced type will display the company name directly on the URL navigation bar. So that customers can clearly understand that this website is safe and trustworthy the first time they browse.
