Posts Tagged :


Should eCommerce Websites Run On HTTPS?

150 150 Andrew Broberg

Security is considered paramount in the digital age.

Security issues can compromise your website. Ecommerce websites are not the only ones that should be using HTTPS. Websites that run on HTTP are more vulnerable to data breaches and cyber attacks. Considering the number of breach in security, websites should start embracing HTTPS.

Why would you consider using HTTPS?

HTTPS secures three elements: encryption, data integrity, and authentication. If you are still using HTTP, third parties can easily inject malicious content to your website without your knowledge. It can have a serious impact on your brand image and may even put your business at risk as a result.

In 2014, many websites have switched to HTTPS with a percentage of 55%. In 2016, the adoption increased to 79% as more and more website owners are concerned about their level of security. Aside from security, people who have made the switch consider HTTPS as a viable platform for meeting customer expectations.

Setting Up HTTPS

HTTPS and SSL work hand in hand to provide an encrypted standard for website-client communication. SSL serves as a door keeper. You cannot enter a building unless you hand your ID to the door keeper. This means that SSL will verify that your license is legit before you can get inside.

The process of setting up HTTPS:

1. Purchase and register an SSL certificate from an SSL provider;

2. Be sure to register the SSL certificate in the name of the website;

3. Verify whether or not the website is legitimate by working with the SSL provider.

You purchase SSL certificates on a yearly basis.  As a rule of thumb, you need to successfully install SSL  certificate on your website to establish HTTPS connections.

Do eCommerce websites really need an SSL certificate?

Ecommerce websites usually require HTTPS and SSL certificates.

1.  Consumers prefer websites using HTTPS especially for credit card payments. Online retailers that provide a secure way of accepting credit card payments give customers greater peace of mind. Running on HTTPS ensures that your website treats information with confidentiality. As a result, more and more customers trust your website.

2. Businesses are expected to follow legal requirements or privacy regulations.

Using third party payment system such as Paypal spares your website from using HTTPS and purchasing SSL. All transactions that you run through a third party shopping cart, which is hosted on a different website will no longer require you to purchase your own SSL certificate.

In general, there is a greater chance that a prospective buyer will commit to choosing your company if your website is secure or using HTTPS. SEO wise, Google favors sites that utilise HTTPS, which can have a slight effect on the sites’ ranking.

HTTPS vs HTTP: What’s The Difference?

150 150 Andrew Broberg

When browsing a website, have you ever noticed the web address’ format? The web address may either begin with http or https.

What’s the difference?

First, we need to find out what HTTP and HTTPS stand for. HTTP refers to the Hyper Text Transfer Protocol while HTTPS stands for Secure Hyper Text Transfer Protocol. You may have already noticed that only a single word separates the latter from the former. We will start with discussing the basics of HTTP and HTTPS.

Hyper Text Transfer Protocol:

HTTP refers to an application layer protocol. You can simply say that it only focuses on how the information is presented. It does not really care how data gets from Point A to Point B. In other words, it does not remember anything about the previous Web session. By default, HTTP operates on Transmission Control Protocol (TCP) Port 80. This means that for you to use HTTP, your computer should send and receive data specifically through this port. Non-negotiable.

Secure Hyper Text Transfer Protocol:

Let’s just say that HTTPS is the more practical and secure way of using HTTP. It operates on TCP Port 443 and it works in conjunction with another protocol often referred to as Secure Sockets Layer(SSL). SSL ensures that data are transported safely. Now this gives you peace of mind in the event you make an online purchase and you are required to enter your credit card information. SSL does not have a set of prying eyes. In fact, it does not really care what the data looks like.

How does HTTP differ from HTTPS?

Well, aside from the fact that they operate on separate TCP ports, the process is another noticeable distinction.

As you interact with data, HTTP simply presents the data to you through your web browser. This enables your browser to get an idea what to do once you click. HTTP has very limited role to play. Once the data travels, HTTP’s job stops there.

Although HTTPS works the same, it has the ability to differentiate one sender and receiver from another. SSL plays an important role in taking the data both going or coming. SSL encrypts the data using mathematical algorithm, which hides the data’s true meaning. The encryption only takes place when the website owner makes a purchase of a time-sensitive certificate.

Now that you have an idea about the difference between HTTP and HTTPS, the next article will answer a question on whether or not you need HTTPS for your e-commerce website.