The difference between the two web protocols HTTP and HTTPS became much clearer to me this past week because it got personal.
In 2014, Google recommended that sites switch to HTTPS. The “S” stands for secure. The sites that switched over to HTTPS were mostly e-commerce sites. Google said HTTPS sites would get a bit of a rankings bump, or you could say that HTTP sites would get punished.
HTTP stands for Hypertext Transfer Protocol which is all about the transfer of data from a web server to a browser. HTTPS stands for Hypertext Transfer Protocol Secure.
What’s wrong with the old HTTP? Information passing from server to browser is not encrypted. That means it could be stolen. HTTPS protocols use Secure Sockets Layer (SSL) certificate to create a secure encrypted connection.
When you found this site you may have used the URL https://ronkowitz.wordpress.com which is where the server that hosts the site is located. But you could also have clicked or followed a link to https://ronkowitzllc.com which is a domain that WordPress gave me with my account and it redirects to the true server location. You could also find this site by putting in the URL http://ronkowitz.com. But notice that that last address doesn’t have the magic “S.” So, if you try that URL, when it jumps to the main site you will get a warning (or even be blocked) that it is not secure.
All three domains worked fine a few weeks ago, but browsers like Google’s Chrome and Mozilla Firefox have tightened the screws.
To add an SSL to the “insecure” site (and I have other domains with the same issue) will cost additional money. Security costs and we no longer have a choice.