HTTPs transition harms and benefits

Started by DenPavlov, Jul 26, 2022, 11:57 AM

Previous topic - Next topic

DenPavlovTopic starter

Tell me what are the pros and cons of switching the website to HTTPs.
Are SEs positions increasing or decreasing, for example, in google?


Generally situation is as follows - it is more optimal to rely on https, from the point of view of all SEs and information distributed among the general public.

The verdict is:
- new client sites on https
- all factors on the website, expediency and promotion are taken into account; if necessary, the protected is transferred to third-party services or subdomains
- old sites with good performance - if you need it in the long run, you will have to - but at a convenient time - f.e., in the off-season, etc.
The rest of these websites - while it will be possible not to go, it remains on the unprotected.

In terms of ranking, it seems that there will be no huge advantages, although there may be - all other things being equal, but when the user will be lit "Caution!" all the time, then there will be less clicks and conversions.

If you need to use push notifications and the like, then https is needed.

Generally - a trend, fashion, etc. - as in a joke - "it doesn't matter that you can do USELESS in seven different ways - the main thing is that you can!" And people are happy to look not at functionality and optimality, but at these seven ways. And sellers need to accommodate to this.


Quote from: DenPavlov on Jul 26, 2022, 11:57 AMHi!
Tell me what are the pros and cons of switching the website to HTTPs.
Are SEs positions increasing or decreasing, for example, in google?

The real plus is that search engines (Google, Bing, Baidu, and all the others) will index your site with an SSL certificate, but a site with just http will not. Or they will give it out on page 100500.
Do you want your site to be indexed? Switch to https.
There is no alternative.
And it won't.


HTTPS in simple words:
The Internet is built around data exchange. Every message sent, every page opened – all that is sending and receiving requests. If they are transmitted in plain text, they can be intercepted by an attacker at any time if web site uses an HTTP connection.

Let's transfer the mechanism of using HTTPS on web site to real life. Imagine that you want to give an important letter to a friend. Even though you packed it in an envelope, the postman can still get the information, and then replace the opened package with a new one (data transmission via HTTP protocol).
But you put the letter in the box on which you hang the lock. A friend receives a package, but he does not have a key — so he puts a second lock on the box and sends it back.

The box "comes" to you, you remove your lock and send the parcel on the way for the third time.
Now a friend will be able to open it with his own key, having access to the necessary information (data transfer via HTTPS protocol)

At first glance, the principle seems complicated, but by sending the key separately, you risk, because it, like the parcel, can be intercepted. In that case, the interception of the parcel will not give fraudsters the opportunity to get information.

When is HTTPS protocol needed?
Modern browsers mark all resources using the HTTP protocol as unsafe. Google believes that interception of any data is dangerous, so the future of the Internet is a secure connection. HTTPS is needed if you:

Collect contact information on the site. This list includes any information that a visitor leaves.
Accept payments on web site.
You are worried about the reputation of web site and do not want your visitors to suffer at the hands of hаckers.
Do search engine optimization and want to take into account all the smallest details.
How to translate a site to HTTPS?

In order for web site to start working over HTTPS, you need an SSL certificate.

What are SSL certificates?
According to the type of verification , there are three types of certificates:

Domain Validation (DV) – domain validation. The simplest certificate is issued instantly and is available to everyone.
Organization Validation (OV) – confirmation of the organization and domain. Contains the name of the organization – accordingly, confirmation by the certification authority is required to obtain it. Available only to legal entities.

Extendet Validation (EV) – extended confirmation of the organization and domain. The most secure and difficult to obtain certificate. By issuing it, the certification authority checks the organization's activities as thoroughly as possible. Available only to legal entities.
For the SSL certificate to work correctly, it must be issued by a special organization - the Certification Center. We work with the certification centers Thawte, GeoTrust, DigiCert, GlobalSign and Comodo.