New Chrome updates to highlight website security
In September 2018, Google will released an update of the Chrome web browser (Chrome 69). This included a change so that websites secured using HTTPS will no longer be marked as ‘secure’. According to Google, this is because the company believes that the web should be secure by default.
Then, in the Chrome 70 update due in October 2018, Google plans to include a change so that websites that don’t use HTTPS will have the words ‘not secure’ displayed next to the website’s address.
HTTPS is like the normal HTTP protocol which is used to send information over the web, but it includes encryption for added security and privacy. HTTPS is designed to:
- ensure you are communicating with the website you intended to communicate with
- prevent anyone from modifying or observing content sent between web browsers and web servers.
A website that uses HTTP instead of HTTPS isn’t necessarily insecure. However, if you are providing personal or financial information, you should always look for a HTTPS connection.
Do not be alarmed if government or business websites are no longer marked as ‘secure’ when you are using Google Chrome. Check for ‘https’ at the start of website addresses to find out if the website is secured using HTTPS. Alternatively, you can use other web browsers (such as Microsoft Edge or Mozilla Firefox) to determine if the website is secure.
For more information, visit the Google Security Blog.