For the several years, Google has been advocating that websites should adopt HTTPS encryption protocol. For the past three years, Google has been favoring sites that use encrypted HTTPS connections by default.
As per Sundar Pichai’s tweet of Feb 9, 2018
Important change to improve security – Beginning in July 2018 with the release of Chrome 68, Chrome will mark all HTTP sites as “not secure” https://t.co/hQVEoHoEBU
— Sundar Pichai (@sundarpichai) February 9, 2018
Websites not secured by HTTPS shall be shown as below in Google’s Chrome browser.
With almost 58% of the global browser market share, seeing Not secure next to your website is bound to impact the traffic on a website. Here are a couple things you can do to make sure this does not happen.
- Get a SSL certificate for your website and have your system admin install it. SSL certificates are available from several providers such as www.godaddy.com, www.ssls.com, www.instantssl.com and several others for an annual fee. There are also valid free SSL certificates available using www.letsencrypt.org.
- Scan your website using Lighthouse, which is a open-source tool by Google to identify which resources in your site load using insecure HTTP. Convert all identified resources to HTTPS.
To learn more on Why HTTPS Matters, check out Google’s developer guides.