Benefits of httpsPosted: Tags: tech,security,martech
Only 24% of top 25000 sites are on https.
This has raised a valid question - What are the benefits of https?
Prevent man in the middle attack
First and foremost benefit is, https prevents man-in-the-middle attack. If you wonder, what that is, don’t worry. I too don’t understand the technical details of that phrase. But I understand the impact and that’s all that matters.
Let us see it from the perspective of a static blog, like this one. All I have in this site are plain HTML pages. There are no forms and so no userids and passwords sent to any server. Even then, https is a good deal, for a simple reason.
There is no way for you to know that your readers are seeing these ads. There won’t be any indication in your server logs. Yet, your readers will hold you responsible for those ads (rightly so!).
Thankfully BSNL serves ads only about themselves. But it could be worse. They could inject ads for your competitor!
When they can serve ads, they can serve anything — like malware.
This is from a static site perspective. If your site is powered by a blog engine like Wordpress, you should move to https.
Improve your rank
There is another benefit for blogs to move to https. Google announced HTTPS will be as a ranking signal. "For now it's only a very lightweight signal", says Google, but "over time, we may decide to strengthen it". Today is the right time to move to https.
You might have heard, https impacts performance. It used to be, not any more.
KeyCDN analyzed the performance of http and https and concluded that there are no performance penalty for https. So there is no reason to stay at http.
If you serve ads using google adsense, you might have another concern: Google may not serve its ads on https. Again, it used to be, not any more. Google Adsense FAQ says they serve ads over https.
Cost of https
Of course, there is a cost to migration. I wrote about my experience in moving this blog to https. If you run a blog, you should read that post too.
Do you still have questions? Tweet to me. Or leave a comment.
Move to https, now.
Like the post? Retweet it. Got comments? Reply.