Yesterday Google announced coming changes to secure connections on the internet. With an aim to make the web more secure for all users.
These changes have a basis in their recent talk HTTPS Everywhere with Webmaster Trends Analyst Pierre Far and Web performance engineer & developer advocate Ilya Grigorik, where they discussed privacy from a user perspective and how the data that can be gathered reveals a lot about a person’s intent.
Their discussion was focused around protecting the privacy of visitors coming to your site, and to protect your site from any malicious intent.
The three aspects of security are:
- Authentication – ensuring you are talking to the right entity
- Data Integrity – your data does not get modified in transit between servers
- Encryption – prevent possible eavesdroppers
In the announcement made yesterday Google has let us know the following information
- Over the past few months we’ve been running tests taking into account whether sites use secure, encrypted connections as a signal in our search ranking algorithms. We’ve seen positive results, so we’re starting to use HTTPS as a ranking signal.
- For now it’s only a very lightweight signal — affecting fewer than 1% of global queries
- Over time, we may decide to strengthen it, because we’d like to encourage all website owners to switch from HTTP to HTTPS to keep everyone safe on the web.
- In the coming weeks, we’ll publish detailed best practices to make TLS adoption easier, and to avoid common mistakes.
We will update you with more information as we see the rollout occour.