Chrome will mark all HTTP sites as ‘not secure’ starting in July 2018

Starting in July 2018 with the release of Chrome 68, Chrome will mark all HTTP sites as “not secure” whether it includes input fields or not, and highlight this in the URL bar.

For the past few years Google has been pushing developers and webmasters to make the change from HTTP to HTTPS web sites. The campaign has proved successful. According to their blog post:

Over 68% of Chrome traffic on both Android and Windows is now protected
Over 78% of Chrome traffic on both Chrome OS and Mac is now protected
81 of the top 100 sites on the web use HTTPS by default

Despite the growing numbers of secure websites, there are and always will be plenty of sites that have not made the secure change yet.

HTTPS warning in Chrome 68

HTTPS warning in Chrome 68

To make things easier, Google pointed to its own Lighthouse auditing tool, which includes tools for migrating a website to HTTPS.

What does HTTPS do?

HTTPS encryption protects the channel between your browser and the website you’re visiting, ensuring no one in the middle can tamper with the traffic or spy on what you’re doing. Without that encryption, someone with access to your router or ISP could intercept information sent to websites or inject malware into otherwise legitimate pages.

That being said, HTTPS is a step in the right direction to ensure a more secure browsing experience for everyone.

Feel free to get in touch with us at office [at] web-focus [dot] eu if any questions appear or even if you need help with securing your website.