Sunday, March 25, 2018

Must get HTTPS certificate for better SEO

Is HTTPS security layer really that important?

Yes, it is.  It shows that the communication between the user's browser and the website will not be prone to misuse by miscreants. It also ensures that the user visits the actual site he has been wanting to, not a fishing site. Google has publicly stated that it would deprecate non-HTTPS sites in future.

What is HTTPS?

HTTPS simply denotes that your website has been verified to be 'secure'. There are many levels of HTTPS security and not all are of the same level. When you type the web address of a reliable bank site, it shows the entire ID of the website given in full, with a lock preceding it. Now, use another website with HTTPS (not a bank or such high security website) and you find a lock before the URL. Non-HTTPS sites do not have a lock. Some browsers have started showing 'Not secure' before the URL when the site does not have a security certificate.

Both these types of websites with a lock preceding the URL are behind SSL (Secure Sockets Layer). What this layer does is that it encrypts all communication between the user's browser and the website server. In the case of banks etc, the security is even more, in the sense that the HTTPS certification agency has ensured that the website belongs to a verified high-veracity entity.

So, when a site shows that it has HTTPS security, it is taken as safe by the visitor as well search engines. That is a huge credibility improvement over non-HTTPS websites and blogs.

Chrome has announced that it would start showing non-HTTPS websites are 'not secure' starting later this year, that would keep the users under guard.

It has also been found that HTTPS sites have better conversion.

These all factors - trust and credibility, search engine favor, better click and conversion rates - run a virtuous cycle in which search engines start liking HTTPS sites for more than one reason.

How to implement HTTPS on your website or blog?

Most web hosts started with charging heavily for providing HTTPS security, but now they are learning to give at least the basic security free.

There is an easy way to get HTTPS certification for free. Lets Encrypt, a free certification organization supported by some top companies, provides it free to websites and self-hosted blogs. You can visit this post on Lets Encrypt for more details.

Google has implemented HTTPS on all its Blogger blogs. So, by default, blogs with .blogspot domain are behind HTTPS security layer. Blogger now also allows mapped domains to have this security.

All (free), LiveJournal and Tumblr blogs also come now with HTTPS security. It is high time to give your blog or website at least the basic HTTPS security if it still lacks it.