GOOGLE CHROME NOW LABELS HTTP SITES AS ‘NOT SECURE’
NEARLY TWO YEARS ago, Google made a pledge: It would name and shame websites with unencrypted connections, a strategy designed to spur web developers to embrace HTTPS encryption. On Tuesday, it finally is following through.
With the launch of Chrome 68, Google now will call out sites with unencrypted connections as “Not Secure” in the URL bar. The move flips the convention of how Chrome displays the security of sites on its head. Previously, pages that deployed HTTPS-enabled encrypted connections featured a green lock icon and the word “Secure” in the URL bar.
It’s a warning worth heeding. Under an unencrypted HTTP connection, any information that you send across the web can be intercepted by a hacker or other bad actor.
“It’s not just ads. Malware is served this way, a lot. It’s not just about making sure that user information is private; it really ensures the integrity of the website.”
For what it’s worth, Chrome is not alone in posting warnings next to HTTP sites; Firefox has explored it also. Between the two, they hold 73 percent of browser market share. In addition, Google notes that the vast majority of Chrome traffic—76 percent on Android, and 85 percent on ChromeOS—already travels across an HTTPS connection.
See the full story here: https://www.wired.com/story/google-chrome-https-not-secure-label/