Thursday , June 7 2018

Google will start marking webpages as ‘Not Secure’ if not using HTTPS in January 2017

Chrome
Google’s move to make the web a more secure place goes into pro-active mode next January with the announcement this morning of a plan to begin marking pages that transmit passwords or credit cards through HTTP as ‘Not Secure’.

The move will come with the implementation of Chrome version 56 which is expected to launch in January. The current version Chrome 53, only began rolling out to Desktop and Android this week with support for improved power consumption as well as mobile payment implementation.

blog-image-1

HTTP vs HTTPS is a big difference when it comes to security with sites using HTTP to transmit the sensitive data, which Google defines as passwords or credit cards (two obviously highly sensitive pieces of information), subject to man-in-the-middle attacks on network traffic.

The plan is to eventually mark all HTTP traffic as ‘Not Secure’, however they will begin first in Incognito mode, before moving on to the standard Chrome environment. Google will move to label the HTTP Security indicator with a hard to miss red triangle like that used for broken HTTPS.

blog-image-2

If you’re a web site admin and want some help implementing HTTPS on your site, check out the Google resource guide for doing do

Source: Google Security Blog.

Daniel Tyson   Editor

Dan is a die-hard Android fan. Some might even call him a lunatic. He's been an Android user since Android was a thing, and if there's a phone that's run Android, chances are he owns it (his Nexus collection is second-to-none) or has used it.

Dan's dedication to Ausdroid is without question, and he has represented us at some of the biggest international events in our industry including Google I/O, Mobile World Congress, CES and IFA.

2
Join the Ausdroid Conversation

avatar
1 Comment threads
1 Thread replies
0 Followers
 
Most reacted comment
Hottest comment thread
2 Comment authors
ChrisAndrew Recent comment authors
  Subscribe  
newest oldest most voted
Notify of
Andrew
Valued Guest

Is Ausdroid going to have HTTPS enabled? I highly recommend Lets Encrypt. Free SSL with auto-renewals that can be set up in about 10-15 minutes.

Chris
Valued Guest

It’s on the list…

Check Also

Blackberry KEY2 specs leak following yesterday’s renders

Just yesterday we saw some official renders of the next Blackberry flagship, the KEY2, leaked …