Web browsers display a websites security at the top of a page. A secure site is often labelled with a green padlock or the word ‘Secure’ in the address bar. However if this is not displayed, the website is lacking an SSL certificate.
What is SSL?
SSL stands for Secure Sockets Layer. It creates an encrypted link between a web server and a web browser to ensure that all data transmitted remains private and secure. URLs that require a SSL connection start with https. instead of just http.
Why Do I Need SSL?
SSL encrypts sensitive information so only the intended recipient can understand it. Without an SSL certificate, any data (including sensitive data such as credit card numbers, usernames and passwords) can be intercepted by hackers and identity thieves.
Trust - Fraud happens. Displaying a positive green padlock reassures a user that your website is safe. Why should you trust a site, if your browser doesn’t?
Rankings - Being prominent on Google is really important. Google favours those with SSL compared to those without, boosting your search results.
Reputable - All serious websites already have SSL, it is becoming out of the ordinary to not have it. You don’t want to be the one getting left behind.
SSL required by July 2018
Google Chrome is the world's most popular web browser, accounting for 56% of the internet's share. In as little as 6 months time, upon the release of its newest version, websites that do not have SSL will be penalised. In Google’s latest security statement, they have advised businesses not to get left behind.
Beginning in July 2018 with the release of Chrome 68, Chrome will mark all HTTP sites as “not secure”
This translates to half of the internet’s users being advised not to view a website if it is not protected by SSL.
You can visit Google’s post here.
But my bookings page is protected?
If you use a calendar or accept bookings, it is likely the provider supplies a SSL certificate. Whether this is a page on your website, forwards to a new URL or opens a new tab, your customer's details will still be safe.
To clarify though, this doesn’t mean that your website is encrypted by SSL.
Google’s stance is a website is either protected or it is not. Having a single page protected is good in principle for the vulnerable data, however will soon seriously hamper traffic and in turn search rankings.
More than half of the world’s users use Google Chrome. If attempting to access an unprotected website, they will be presented with a page saying 'Your connection is not private'.
SSL and SCRUMPY
At SCRUMPY we take security seriously. That’s why every website gets a unique SSL certificate to protect its customer data. We also monitor login attempts, and employ anti-bot code to prevent junk enquiries.
Not only do we use SSL but we've spent a great deal of time ensuring it is setup to offer the maximum level of security possible to protect our customers and their visitors. In the 'Qualys SSL Labs' test we scored more secure than all our competitors.
In the 'Sopho's Security Headers' test we scored the maximum possible score, more than most UK bank websites, not that we're bragging or anything…
Feel free to contact us if you have any questions about your website security or SSL.