今年7月起,Chrome浏览器的地址栏将把所有HTTP标示为不安全网站。这意味着,谷歌对于网站加密的要求更为严格,可以说是谷歌浏览器针对HTTP网站开战的又一步棋!It is understood that in 2016 Google had announced certificates issued since October 2017 need to comply with its certificate transparent (Certificate Transparency) in order to be trusted browser, but in 2017 Google mandatory compliance time delay to April 2018. (Google credentials transparency (CT) project aims to prevent counterfeit certificates issued or wrong, enhanced browser security and prevent middlemen *** Although the certificate of transparency already running, but for most it is a CA is optional. )
January 2017 release of Chrome 56 browser began to collect passwords or credit card data HTTP page is marked as "unsafe." If the user October 2017 launch of Chrome 62, HTTP page with all input data and browsing in Incognito mode HTTP page will be marked as "unsafe."
In addition, Google also said that from Chrome 67 (2018, May 2007) begins, all will be banned presented by API HTTP protocol or other unsafe websites and sources. Chrome is in black font marked "unsafe" words, the future Google will "unsafe" marked in red, and add the red icon next to a warning, to further emphasize the HTTP Web site should not be trusted.
For this change, Google explains: Chrome new interface will help users understand all HTTP sites are insecure, so using a secure HTTPS sites. HTTPS ever more convenient than the cheaper, it brings new features to enhance the performance and powerful, these are HTTP does not have.
Bird cloud SSL certificates provide a means of authentication on the Internet is used to identify and prove the identity of both the digital information file. The site uses SSL certificates, between the user and the server can guarantee the confidentiality of information exchanged has not eavesdropping, can not be changed, it is undeniable, not pretending to function. Are introducing experience-based DV SSL certificates can apply for only one yuan.
HTTPS is an upgraded version of the HTTP protocol, more secure and reliable. Now more and more mainstream browser will set the basic requirements of HTTPS, because a secure connection protocol between Internet users and websites are seen as a necessary measure to reduce the risk of the user, or the user may be subject to eavesdropping, data or middleman *** tamper.