Skip to main content

Is HTTPS Really Hallmark Of Security Of A Website?

HTTPS or HTTP Secure is a measure of trust when you require furnishing your personal information like Name, Address, Phone No., Email, Web Address and Bank Account No.etc to a website. Every website not ask for your personal information.


Sometimes I read a similar piece of article via www.askleo.com. The Leo's argument is, E-commerce websites like Paypal.com, Ebay.Com etc those ask for personal information need to be HTTPS enabled. However a website like AskLeo.com does not ask for personal information hence not require HTTP Secure.

Next what caught to my attention is an article via Mashable.com: Secure Sites Will Show Up Higher in Google Search Results, says Google Blog. In future the Google.com will implement such strategy. (Link to story http://mashable.com/2014/08/07/google-prioritize-secure-sites)

Why this caught my sharp attention is, I run two blogs, www.dkoffice.in and www.careercare.info. Both of these are supported by couple of sub sites (sub domains). My blogs are information based. I don't ask user's personal information through my blog, then why the heck I need to spend extra bucks for HTTPS?

Secondly, I do SEO and Website Development and copy writing for earning money Link to my service page. It's big question for me, whether an HTTPS web address shall win over HTTP for lesser efforts? Or if good website work shall rank low in future if not HTTPS enabled?

If we observe security breach trends of past 10 years, as far as I do remember, most of the security breaches happen with HTTPS enabled websites. Is HTTPS really secure? My personal response is half yes, half no.

HTTPS is like the lock you put on the door while going out. Your belongings are secure till thieves are afraid of Police and your neighborhood. If they are not afraid but your home is still safe, it's by chance chance only.

This same simple criteria applies with HTTPS too. Why hackers will target a particular website which does not gather any important personal information from customers / audience, like mashable.com or dkoffice.in or say askleo.com even if it's web address reads as HTTP. Thieves target money not money making techniques.

The ecommerce websites stores sensitive user data, a very very confidential information. They need to be extra secure. HTTPS alone should not be the measure of Security Strength for such sites but also factors like security layers, security strategy and what if a catastrophe happens?

Considering the scenario, in my personal opinion a website with HTTP address which does not gather user data (read sensitive information) is equally secure as a shopping site with HTTPS web address. HTTP OR HTTPS shall not be the quality seal of a website but what it does.

Answer to the questions, like, whether HTTPS shall be Hallmark of Security and to rank high on Google Search Engine / Good SEO shall depend on the type of information it gathers from the customers.

Comments

Popular posts from this blog

Why FAIL is so noisy

FAIL, FAIl, FAil, Fail, failWhen you fail, it creates deafening noise, for a moment it feels, your failure is the only news in the universe, people talk day in and night out about your failure and slowly noise diminishes.Nobody cares how much efforts you have put in there to create that mess. You feel dejected, you feel rejected, you feel lonely, you feel ashamed. You feel like a culprit.Often in the mist of hollow noises you forget to enjoy that failure point, you forget to celebrate that milestone and forget the fact that success is always next to failure.If you won't recognize your milestone why others will. People wants fruits not trees. It is the you who dared to plant the tree give it ample time to grow. You wished for the tree not fruits and tree is there. Fruit is a by product of tree. Success is a by product of your efforts. You need to be whole tree and not only fruits.Remember only a horse rider may fell down of a horse back.There are two kind of people in this world, o…

Dear VIKRAM we miss you

You reached for the moon, we eagerly waited this side on earth to see you landing on Moon. We were excited, as every moment passed during descent we hold our breaths tightly. Our fingers were crossed and all of a sudden you gone out of sight from our computers.
This is not easy to realize that a baby is lost early and we can do nothing. But you are brave, you are courageous and you are unique.
My heart goes with you. And hope you are in good health and enjoying your new place the Moon.
Miss you Vikram.
Dear Team ISRO,
undoubtedly you did everything possible to make the mission Chandrayaan 2 a success. Fail is fail. It's really painful. I was hopping to get a good news at the break of dawn. As the greatest Saint of all times Dr. APJ Abdul Kalam says, translate your dreams into action.
Let's begin the journey again. All hearts and support goes to you.
Hats of Sir Dr. K. Sivan and team ISRO.Kalam not smile so easily......Same as you feel, wish and hope, I too pray for the safety…

How to register a .app domain

Get.App Registering .app domain is like registering any other domain e.g. dot com / dot info / dot shiksha etc. domain. However, at present very few registrar offer it. If you planning to launch your app or just another apps niche website then here is:

List of .app domain registrars101domain1API (Hexonet)Communigal Communications (Galcomm)EnCircaEntorno DigitalGandiGoDaddy.comGoogle DomainsLedl.net GmbH (Domaintechnik)MarkMonitorName.comNamecamp (yay.com)NamechNameWeb (bNamed)PorkbunSafeNamesSecuraSoluciones Corporativas IP (Don Dominio)Super Registry (Rebel)UniregistrarVariomediaWebnames.ca1&1 InternetAscio Technologies ()NetNames)BB Online UKBlacknight Internet SolutionsBrandmaBrandsightCorehubCSC Corporate DomainsCSL Computer Service Langenbach (joker.com)Domain Cost ClubDomain ResearchDomain The Net TechnologiesDynadotEuroDNSFocus IP, Inc. (AppDetex)Gransy (Regtons)Hosting Concepts (Openprovider)Key-Systems (DomainDiscount24)LexsynergyMarcaria.comNetimNom-IQ Limited (Com Lau…