Chrome update to aggressively flag HTTP pages

by Derek Kortepeter
Sept. 1, 2017 1 comment TechGenix Apps & Hardening privacy

Even though the warnings from InfoSec experts have been extensive and frequent, some users still insist on utilizing HTTP over HTTPS. The fact that HTTPS is now the standard, and as such its cost is low and ease-of-access is high, there is no excuse for using HTTP anymore. Many companies with major browsers, such as Google, have made the effort to discourage the usage of HTTP pages. Flagging HTTP sites that require passwords or credit cards as nonsecure was just phase 1 of Google’s plan. This was alluded to in previous updates from the company, but until now we had no real knowledge of what Google would do next to eventually move away from HTTP. In a blog post written by Emily Schechter of the Chrome Security Team, a future update to Chrome regarding HTTP was explained in detail. Due for October 2017, Chrome 62 will take the warnings a step further by displaying them “when users enter data on an HTTP page, and on all HTTP pages visited in Incognito mode.”

Steven Ulm 8 months ago

They issued a warning since the beginning of 2017 about flagging the HTTP pages. Everyone should use HTTPS , not because Google says so, but strictly because matters of security.