Have you ever seen the message “this website is ‘Not secure’” while browsing? It can make people worry about their devices’ safety, and some might even close the browser immediately.
Now, imagine this happening on a website you rely on for making money. Not only does it risk losing your visitors’ trust, but it also affects your Google ranking.
In the 68th version of the Google Chrome browser, a new warning saying “Not Secure” appears in the address bar for insecure web pages. If you click on it, a popup explains that your connection to the site is not secure and warns against entering sensitive information.
In this article, we’ll guide you on fixing this issue so you won’t have to worry about losing traffic or facing penalties from Google.
Why HTTPS Matters Over HTTP?
Since 2017, Google Chrome has been warning users about security when they visit sites using HTTP (HyperText Transfer Protocol) instead of HTTPS. The “S” in HTTPS stands for “Secure.” Unlike HTTP, HTTPS encrypts the data you enter on a website, making it more secure.
If a website uses HTTP, the data you input is essentially visible as it travels between you and the website. This visibility creates a chance for cyber-criminals to intercept and steal the data. Using HTTPS ensures that your data remains encrypted and protected from potential hackers.
Why HTTPS Shows “Not Secure”?
Simply put, if your web hosting plan doesn’t include an encrypted connection, you might see the “Not Secure” message.
When you visit a web page, it needs to have a secure connection. You can tell if a site has this by reviewing if the URL starts with “HTTPS” in your browser, indicating an encrypted connection.
To make this happen, a website needs an SSL Certificate. Without it, Chrome will display the “HTTPS Not Secure” message because the necessary encryption is missing.
How to Fix “Not Secured”?
Fixing “Not Secure” is simple.
Firstly, get an SSL Certificate. You need a special digital key called an SSL Certificate. It’s like a virtual padlock for your website, keeping things safe.
Secondly, go to SSLforfree. It’s a website that helps you get this certificate for free, and once you have it, your connection stays secure for 90 days. It’s like a 90-day pass for your website’s safety.
Another Way to Fix “Not Secure”: Setting up a Site-wide 301 Redirect in WordPress
After switching your website URL to HTTPS, many visitors might still use the old HTTP link to access your site. To solve this, you can direct WordPress to redirect all HTTP-traffic to the new HTTPS URL automatically.
The popular method for this is using a 301 Redirect. Plugins like Really Simple SSL make it easy. They essentially tell WordPress to serve all traffic over HTTPS, ensuring a seamless transition for your visitors.
If you prefer a manual approach (using an FTP client like FileZilla), it can be more reliable in case the plugin encounters issues. The key is to set up the 301 redirect to avoid disruptions and smoothly shift from HTTP to HTTPS. Don’t worry; making your site use HTTPS doesn’t have to be intimidating!
Security Warnings for All HTTP Sites
Before Chrome 68, Google’s Chrome browser only warned about a site being “not secure” if it used HTTP and collected passwords or card details. However, with the Chrome 68 update, things changed.
Now, any website not using HTTPS gets flagged as “not secure,” regardless of whether it collects sensitive information. This is good for users because it helps them decide if they want to visit a potentially insecure site. But for websites without HTTPS, it’s a bit of a problem.
Why Having a Secure Site Is Crucial?
- Extra Security:
- HTTP Weakness: HTTP is not secure. It’s vulnerable to attacks, especially the man-in-the-middle (MITM) kind. This means anyone with access to your connection can intercept and access data.
- HTTPS Strength: HTTPS is heavily encrypted, ensuring highly secure communication between users and servers. It’s the safer choice for sharing sensitive information, offering peace of mind to your website visitors.
- Increase (or Maintain) Traffic:
- Chrome Warning: Google Chrome warns users about accessing insecure HTTP sites, potentially diverting visitors away.
- HTTPS Trust: With HTTPS, Chrome displays a green padlock, signifying a secure site. Visitors trust secure websites more, increasing the likelihood of interaction and data sharing.
- Trustworthiness:
- Security Priority: Choosing HTTPS over HTTP demonstrates a serious commitment to security. In an era of data breaches and internet fraud, users are more cautious about the sites they visit.
- Building Trust: HTTPS builds trust between you and your visitors. It reassures them that you prioritize the security and confidentiality of the data they share with your website.
Wrapping up
The shift towards secure web browsing is more crucial than ever. With Google Chrome marking pages as “Not Secure” for those still relying on HTTP, it’s not just a browser alert; it’s a call to embrace a safer online environment. Transitioning to HTTPS not only safeguards sensitive data but also boosts trust, visitor retention, and your site’s credibility. The journey from “Not Secure” to a secure browsing experience is not just a technical upgrade; it’s a commitment to the security and confidence of your users.
FAQs on Website “Not Secure”
1: Why is Google Chrome marking my pages as “Not Secure”?
Google Chrome is now prioritizing user safety by flagging pages using the unencrypted HTTP protocol as “Not Secure.” This helps users make informed decisions and promotes a more secure online experience.
2: What’s the difference between HTTP and HTTPS?
HTTP lacks encryption, making data vulnerable to interception. In contrast, HTTPS encrypts data, ensuring a secure communication channel between users and servers, crucial for protecting sensitive information.
3: Will using HTTPS affect my site’s traffic?
In a positive way. Google Chrome’s warnings may divert users from insecure HTTP sites. HTTPS, signified by a green padlock, not only ensures security but also builds trust, potentially increasing user interaction and data sharing.