8 October 2017
Changes announced by Google plan to warn users of websites that do not feature SSL encryption before the end of 2017. Any website that fails to implement SSL encryption will likely see large warnings before users get to your site; being de-ranked from Google's index and/or being delisted entirely. We have listed below some common questions and answers relating to SSL encryption.
Changes announced by Google are coming into effect that will impact a large number of websites. Before the end of the year (2017), Google plans to warn users of websites that do not feature SSL encryption. Any website that fails to implement SSL encryption will likely see large warnings before users get to your site; being de-ranked from Google’s index and/or being delisted entirely.
To help with this change, we have listed below some common questions and answers relating to SSL encryption.
SSL is an acronym of for Secure Sockets Layer and creates a secure communication channel between each user and the web-server. This protects users from ‘man-in-the-middle’ attacks or from hackers capturing user data between them and the server. SSL encryption is enabled by purchasing a ‘security certificate’ which is then installed on the web server.
Google is trying to protect internet users from scammers or hackers that intercept data transmitted across the web. Known as ‘man in the middle attacks’, hackers try to intercept usernames, passwords or contact form details as users communicate with web servers. SSL certificates encrypt this communication between a user’s browser and the server making it harder for details to be stolen.
There are several ways to check if your website is protected by SSL encryption.
Not all websites need an SSL certificate – however Google recommends that all website install a SSL certificate if possible. However at a minimum, if a website collects user data; has contact forms or text entry boxes; or has text-entry search features – then your website will need a SSL.
For all other sites, you could get away without an SSL, however Google will still prioritise sites in its rankings that are encrypted and protected by SSL.
Google plans to role this update before the end of 2017.
Google has recommended that all websites should be protected by SSL encryption, however if web masters choose to ignore Google’s warning, Google plans to publicly name and shame websites with a large and scary warning as people navigate to your website. This will not only turn users away from your site (in favour for more secure websites) but it also runs the risk of de-ranking your site or removing it from Google’s index completely.
SSL certificates are purchased directly from governing security bodies that are in control of protecting the internet. Your web master or agency will need to pay to protect your site and this cost is on top of running a server; performing back ups; server patches etc.
To protect your site and to install an SSL certificate, speak with your web master or digital agency who will be able to help.