View Excalibur Technology's Facebook page View Excalibur Technology's Twitter page View Excalibur Technology's YouTube page View Excalibur Technology's Google Plus page View Excalibur Technology's blog View Excalibur Technology's LinkedIn page

Will Your Website’s Forms Soon Display A “Not Secure” Message?

Posted August 30, 2017 by

In January 2017, Google began to display the words “Not secure” in the address bar of its Chrome browser when you visit a web page that collects sensitive information such as login or payment information and if the page is not loaded over HTTPS. Google’s motivation for doing this was to alert the website’s users that any information they enter will be unencrypted, and to motivate website owners to implement HTTPS on their websites.

Now, Google is proceeding with the next phase of its push to encourage website owners to move their sites to HTTPS. Beginning with Chrome version 62, due for release in late October, Chrome will begin to display the same “Not secure” message on all non-HTTPS web pages that collect any information that users type into the page. This means that for a simple contact form that collects the user’s name, email address, or phone number – and even for a simple website search box – the “Not secure” message will be displayed in Chrome’s address bar if the page is not secured by HTTPS. Furthermore, the “Not secure” message will be displayed next to any typed form field (name, email, search, etc.) when the user clicks on the field. The below image shows what this will look like. You can view the entire article by CLICKING HERE.

Chrome will soon display "Not secure" when typing into input fields on HTTP pages.

What is HTTP / HTTPS?

HTTP stands for HyperText Transfer Protocol, and is the default protocol by which websites transmit information over the Internet. HTTP traffic by nature is unencrypted, meaning that any information that travels from your web browser to a website – and vice versa – is sent in plain text. So if you enter “John Doe” and “johndoe[at]mydomain[dot]com” into a contact form, for example, and someone is able to intercept the data as it is being transmitted, they will be able to read the information you entered.

The S in HTTPS stands for Secure. When a website uses HTTPS, the data that is transmitted between a user’s browser and the website is encrypted. In the example above, if someone manages to intercept the traffic of the information you enter into the form of a website that uses HTTPS, they will not be able to read what you entered because it will be encrypted rather than plain text.

Will My Site Be Impacted by This Change in Google Chrome’s Behavior?

To determine whether your website will be impacted, navigate to a page on your website that has a form that requires users to type in information. Note that if your site has a search box on all pages, any page will do. Once you have navigated to the page you want to test, click on the URL of the page in your browser’s address bar. If the URL does not begin with “https”, your site will be impacted by this change. Note that if you have a WordPress or Joomla! site, or any site that has a login page, you should perform this check on your site’s login page as well.

Do you have questions or want help moving your website from HTTP to HTTPS in order to avoid being labelled as “Not secure” in Chrome? Call the experts at Excalibur Technology today at (877) NET – KING.

Comments are closed.

Excalibur Technology
Excalibur Technology
Excalibur Technology
Excalibur Technology
Excalibur Technology
Excalibur Technology