Ever wondered what is the lock sign that shows up on the internet address bar?
The lock sign in the address bar while browsing the internet/websites suggest that the website is safe to access as the user information will be encrypted, on the other hand, some websites without the lock sign the browser (chrome) shows you the (below) caution, meaning alerting you that the website you are about to access may not secure to browse, for example filling out a form asking for user name, email id, credit card number etcetera, simply because the details you enter on the website will not be encrypted or secured.
Let’s understand what is https
HTTPS short for HyperText Transfer Protocol Secure meaning it is an arrangement for protecting the (information) transmission between the two networked systems, for example, a web browser and the webserver.
As illustrated in the image above, where the data is encrypted and secure from the middle attacks and breaks data into small packets reducing the risk. It uses port number 443 for data transmission.
So how can we make our webpages encrypted? Well, the simple answer is by deploying either of the secure connection such as Transport Layer Security (TLS) or Secure Sockets Layer (SSL), it ensures the security of the data and also validates the authenticity of the websites.
Understanding HTTPS with the help of illustration and some key points of HTTPS
- HTTPS acts as a data protection shield especially for public networks such as Wi-Fi.
- Drastically improves the speed of the data transfer
- Data is encrypted at both the client and server sides, protects against eavesdropping, counterfeiting of information, and tampering of the data.
- The use of SSL/TSL certificates improves the SEO of the website.
- Fundamentally the usage of HTTPS is more apt for websites that require users to enter sensitive or financial details such as credit card number, bank account number, SSN, and phone number.
- Even though HTTPS ensures the data exchanged between two connected computers is protected, it cannot encrypt the data cached on the browser.
- HTTPS can also not encrypt the host addresses and port numbers.