What is HTTPS and Why Should You Care?

What is HTTPS and Why Should You Care?

Don't forget to download our {free} 6-step checklist for securing your website!

It’s known as many things – HTTPS, the lock icon in the address bar, an encrypted website connection.  Although it was once reserved primarily for passwords and other sensitive data, the entire web is gradually leaving HTTP behind and switching to HTTPS.

BIS Website HTTPS Example

So what is HTTPS, exactly? The “S” in HTTPS stands for “Secure”.  It’s the secure version of the standard “hypertext transfer protocol” your web browser uses when communicating with websites.

HTTP Puts You At Risk

When you connect your website with regular HTTP, your browser looks up the IP address that corresponds to the website, connects to that IP address and assumes it’s connected to the correct web server.  Data is sent over the connection in clear text.  An eavesdropper on a Wi-Fi network, your internet service provider or government intelligence agencies like the NSA can see the web pages you are visiting and the data you are transferring back and forth.

HTTPS Example 2

What is the problem with this? Well for one thing, there is no way to verify you are connected to the correct website.  You think you accessed your bank’s website, but you are on a compromised network that’s redirecting you to an impostor website. Passwords and credit card numbers should never be sent over an HTTP connection, or an eavesdropper could easily steal them. These problems occur because HTTP connections are not encrypted.  HTTPS connections are.

How HTTPS Encryption Protects You

When you connect to an HTTPS-secured server – secure sites will redirect you (automatically) to HTTPS – so when you want to login to your bank account online, you know you’re secure.  Your web browser checks the website’s security certificate and verifies it was issued by a legitimate certificate authority.  This is also where your IT team comes in handy because unfortunately, certificate authorities can actually issue bad certificates and the system breaks down if it is not monitored correctly.

HTTPS Example 3

 

No one can eavesdrop on your information when you send it over an HTTPS connection.  HTTPS is what makes secure online banking and shopping possible! It also provides privacy for normal web browsing.  Google’s search engine now defaults HTTPS connections which means people can’t see what you’re searching on Google.com.  The same goes for Wikipedia and other sites.  In the past, anyone on the same Wi-Fi network would be able to see your searches, including your Internet service provider.

Keep an Eye Out for Phishing Tricks

Clever phishers have found ways to disguise their websites because they know people now look for the HTTPS indicator and lock icon.  Be wary and don’t click links in phishing emails or you may find yourself on a cleverly disguised page!

Do you have questions about HTTPS and how to make sure your business is secure from threats? We’re here to help! Contact us for additional information.

Download Our {FREE} 6-Step Checklist for Securing Your Website







RELATED:

The Anatomy of a Phishing Email

Phillip Long - CISSP, CEO of BIS Technology Group, along with his team of marketing and information technology experts, will walk you through an overview of what your business should be doing to protect your data and plan your digital marketing strategies.

About BIS Technology Group

BIS Technology Group is the technology leader on the Gulf Coast and is comprised of four divisions: Information Technology, Web Design & Digital Marketing, Office Equipment and Business Consulting. Together these divisions help local businesses exceed expectations and allow them to group to their full potential while minimizing risks. To learn more about BIS Technology Group, visit bistechnologygroup.com.

You may reach out to us at:
Phone: 251-405-2527
Email: plong@askbis.com

 

 


  • Very informative blog. Our website is not https encrypted. Is there chance to get insecure/hack in future. Please check out website : UniNets.

    • Phillip Long

      Yes the data that you share between you and your website is going across the internet in clear text. This means bad actors can read that data. I would get moving on setting up a certificate on your website as soon as possible. Not only to protect you but also others that use your site.

    • Thanks Phillip!!