How to avoid the chrome ‘not secure’ warning – chemical code limited
From Jan 31st 2017 Google Chrome web browser will be warning all your visitors that your site is insecure if you do not have a HTTPS security certificate protecting your website.
On January 31st 2017 Chrome will roll out an update and Chrome version 56 will come with something that will cause a big problem for your business if your website is not secured with an SSL/TLS security certificate.
HTTPS Everywhere is a collaboration between The Tor Project and the Electronic Frontier Foundation to help create a safer web for all. Webmaster tools training Google signed up to support the aims of https://www.eff.org/https-everywhere and they have been steadily pushing website owners towards HTTPS security.
HTTPS is that little padlock you see when you go to your bank or favourite shopping website. How to install webmaster tools If you look at the top of your browser, you should see it on our website.
HTTP or “Hyper-Text Transfer Protocol” is the way that content is shared over the internet, that wonderful invention of Tim Berners-Lee that gives us the ability to see cat videos. Webmaster tools home page optimization Well HTTP is relatively insecure as it was never designed with banking, shopping and sharing of very sensitive personally identifiable data. Webmaster tools malware So along came HTTPS or “Hyper-Text Transfer Protocol Secure” You may see HTTPS referred to as TLS, sometimes SSL or combined as TLS/SSL just to make sure people know what you are talking about.
Put simply HTTPS is a way that servers can communicate with your browser in an encrypted way. Search webmaster tools help Whatever it is referred to as HTTPS is the process where the user’s browsing session is encrypted end to end. Webmaster tools forum This gives the visitor peace of mind that the website being visited is the actual website they intended to visit, it gives the user privacy protection and ensures the integrity of the exchanged data between server and the users computer.
HTTPS (TLS/SSL) uses a secure “certificate” issued by a regulated third party, which authenticates your websites to the users browser and shows your users that the browser session is with the website you want and the data is encrypted end to end.
Imagine you wanted to send a box with something very valuable in it to a friend, the contents are precious but the method of transporting it is not secure, however as long as no one can look inside the box everything will be OK.
The problem is, how do you send a locked box full of valuables with the key? You can’t give the key to the courier, they will open the box. Webmaster tools 2013 You can’t send another courier because they could work with the first courier and open the box. Webmaster tools download You can send the box, wait for your friend to tell you they received it and then send the key, but what if the message from the friend is not actually from your friend? There are too many “holes” in your security trying to get the box and the key to your friend.
At no time has the box been unlocked in transit, and your gift has always been safe. Webmaster tools php It does take more trips BUT it means two people who never meet can exchange information without ever having to know what the other person’s security is. Site webmaster tools It is a more complex variation of this type of encryption that is used for HTTPS and web encryption.
If the data flowing from your machine gets interrupted and someone positions themselves between you/your browser and the target of your browsing session and the data is not encrypted then they can see everything you are “talking” about. Webmaster tools url removal With HTTPS no one can monitor the traffic with, what is known as a “man in the middle” spyware or hack into any session and seize sensitive information.
HTTPS (TLS/SSL) has always been the de-facto standard with eCommerce but now with the rise of identity theft and more and more hackers seeking to gain access and control Google is raising the bar on website security and more or less forcing website owners to upgrade their security.
Google and many others simply wants all browser sessions to be encrypted to increase the overall level of security on the web and ensure that your safety and security is protected online, so when they send you from their search results you are arriving at the actual website you want to go to, not some “spoofed”, hacked or hijacked version of the site.
Cuts down on identity theft and reduces wasted time and money dealing with the problems that relatively minor number of people cause but the effects of it can be felt by individuals for years afterwards. Webmaster tools sign in The cost is also passed on to business and thus it makes it safer and overall lowers the cost of doing business online.
Chrome, like other browsers has always notified users of HTTPS sessions, visit any HTTPS protected website and as we have already stated you will see a green icon in the left hand side of your browser address bar with a green padlock. Google analytics google webmaster tools There are various levels of certificate protection for different applications, however even the simplest HTTPS SSL/TLS certificate will give you the green padlock protection.
In the latest version of Chrome that notification will be turned upside down so that sites without any form of SSL/TLS will be “outed” to the visitor. Webmaster tools speed test Currently the browser shows a simple “secure” notification with a green padlock and sometimes the signing authority details.
Instead as of 31st Jan 2017 with the new Chrome version update, the Chrome browser will warn visitors that any non-HTTPS site is “not secure“, this will start with a simple notification but these warnings will escalate over an unspecified time period until when arriving at your website they will simply see an exclamation mark inside a red triangle with the letters HTTP next to the web addresses of your non-HTTPS site.
Google commissioned research to find the most alarming icon to fit the message and they found that the warning icon was most effective at alerting and alarming end users. Webmaster tools nedir Google really does want this to cause concern in end users.
They are available from your web hosts, however not all web hosts know how to install them correctly and just because they are installed on your server you will still need to update your website, change all your web URLs to reflect the new “HTTPS” URL and ensure all media, code functions and forms call the “HTTPS” URL.
There are quite a few very technical settings changes that need to be made and we’d always suggest you get someone to do it who has experience of HTTPS certificate install. Free seo webmaster tools If you get it wrong your site could become inactive, or worse, parts of it are secure and other parts are not, causing all sorts of problems in the future.
If you do want to see how it is done and are prepared to wade through it all then Google has a handy guide to enabling HTTPS: https://developers.google.com/web/fundamentals/security/encrypt-in-transit/enable-https
One BIG issue you may face is publishing third party content on your website via iFrames, such as adverts or videos. Webmaster tools site verification If the source is not HTTPS enabled and is being transported to your site via HTTP (with no security from SSL/TLS) then you will fail any HTTPS test from the browser. Tools for webmaster So it is very important that you review any ads served to your site or content coming from third party providers and make sure these are also using HTTPS.
Your search ranking can be affected positively when using HTTPS as Google uses HTTPS as a “positive search quality indicator” meaning that it gives you a small boost in search positions.
If you have a large site with a lot of traffic you might want to migrate the site in chunks or sections to monitor the effect on traffic and conversion, however smaller sites we would suggest just making the move in one go. Where is webmaster tools home page Check here for more info about this ranking factor.
Ensure your site is managed through “Search Console” formerly known as Google Webmaster Tools, this will alert you to any issues quickly and allow you or your web devs to pinpoint problems early. Webmaster tools free download Your web devs should have access to the Search Console in their account so you may need to make them admins. Webmaster tools facebook Here is a Search Console Help article on how to Transfer, move, or migrate your site with Google Search Console follow their guides to help maintain your website search rank.