Skip to Content
Call Toll-Free 717-290-6760

Website Security Isn’t an Option

website hosting and secuirty

Since 2014, Google has been encouraging website owners to use HTTPS.  So what is HTTPS?  HTTP is Hypertext Transfer Protocol and is the technology that passes information for websites across the Internet.  HTTPS is the secure version of HTTP and uses an SSL Certificate to encrypt the traffic, which is a good first step in website security.  When a website uses HTTPS the data is protected from hackers viewing the traffic.  Sensitive data such as credit cards can then be passed across the Internet securely.  

Using HTTPS correctly will give your website a boost in the search engine ranking.  Many marketing companies have caught onto this and have started using HTTPS.  Now Google is moving from carrot to stick.  When Chrome version 62 comes out in October websites with text input will require an SSL certificate.  If you don’t have HTTPS then Chrome will display a “Not Secure” warning in the address bar. In addition, to this Google has already started to blacklist websites that allow password and credit card fields without using HTTPS.

We have run across many websites that fail at HTTPS.  Registrars and hosting companies offer SSL certificates but don’t provide assistance with implementing the certificates correctly.  There are three aspects of proper HTTPS implementation.  First, you must purchase a certificate and have it installed on the hosting server.  This can be tedious and require the process to be repeated annually.  Remembering when the certificate expires and renewing it is frustrating.

Second, the website must redirect all traffic to HTTPS.  A certificate without this step is useless and many website owners fall prey to clever marketing that provides a certificate but no implementation.  This redirect can be done many different ways.  All pages should be permanently redirected so that the SEO value transfers correctly.

Third, the code may need to be adjusted as a result of mixed content errors.  Mixed content is when an image is using HTTP and the web page is using HTTPS.  Because one is secure and the other is not this creates a mixed content error.  All assets such as images, CSS, and javascript must use HTTPS if the web page is using HTTPS.  This is especially important with WordPress websites.  

Anttix utilizes webClinic Pro for website hosting and website security.  Our customers enjoy proper implementation as part of the service.  You don’t need to worry about figuring out how to make your website secure, all of this implemented for you and reviewed regularly to ensure that your website stays secure.