Why is My Website Not Secure on Google?
It’s here – the announcement we’ve all been waiting for.
Google, the search engine giant, is officially marking ALL websites who don’t use “HTTPS” for their website domain as “not secure.”
In 2017, Google announced this update was coming. While the October update initially affected some websites, the latest Chrome update will have a much larger impact on the world wide web.
Beginning July 2018 with the release of Chrome 68, Google will mark ALL websites who use “HTTP” as “not secure.”
This HTTPS update and Google’s Mobile Index and Speed Updates will impose challenges for business owners, but implementing a proactive strategy right away will ensure your website remains SEO friendly on Google.
What Does It Mean if Your Website is Not Secure?
Let’s face it.
Cyber security is not a choice anymore. In this digital age, it’s a must.
Cyber-attacks such as WannaCry, Spectre, and Cryptolocker caused a tidal wave of consequences across the world. According to the Ponemon Institute, cybercrime costs organizations on average $11.7 million.
Is Your Website Secure?
Find out if your website has the proper SSL certification to be considered secure by Google.Is My Site Secure?
Without HTTPS, your website is not strong enough to protect the communication and privacy between the website and the user’s browser.
Any information (such as credit card information, email, etc.) used on an HTTP connection is displayed in “plain text,” which could be accessed by any hacker who’s able to break into the connection between your browser and the website.
And for Google, this is a huge problem.
As the most popular search engine worldwide, Google cares about providing a secure, optimized experience for its users.
Think about your own experience on Google. If you clicked on a link and got an error message – would you trust the website?
It’s the same for your customers.
They want a secure website experience. Google does too, which is why HTTPS sites are ranking higher on search engine result pages.
According to Google:
- Over 68% of Chrome traffic on both Android and Windows is protected.
- Over 78% of Chrome traffic on both Chrome OS and Mac is protected.
- 81 of the top 100 sites on the web use HTTPS by default.
Therefore, if your website is still “not secure”, it can have a negative impact on your leads, conversions, sales, and more.
Ready to switch to HTTPS?
How to Fix the HTTPS Not Secure on Google
This may get technical, but hang in there!
These basic principles are critical for understanding exactly how HTTPS works.
Hyper Text Transfer Protocol Secure (HTTPS), protects information between the browser and user through Transport Layer Security (TLS) by giving layers of security.
3 Security Functions of HTTPS
- Encryption – While the user is browsing a website, nobody can maliciously track their activities or steal their information.
- Integrity – Data can’t be corrupted during transfer without being detected.
- Authentication – Demonstrates website users are communicating with the right site.
How do You Set Up HTTPS?
For HTTPS to work, it needs a certificate, known as Secure Sockets Layer (SSL), installed on the web server.
An SSL uses a Public Key Infrastructure system – two “keys” or methods (a public and private key) to encrypt the information.
Anything encrypted with the public key is decrypted by the private key, which is protected and hidden on the website’s server.
When you request an HTTPS connection to a webpage, the website will initially send its SSL certificate to your browser.
This establishes a uniquely secure connection between the user and your website.
In order for HTTPS to work, your SSL must be correctly installed and activated.
If you’re not familiar with the backend of your website and don’t have your own server, connect with your web development and hosting company to help you navigate the HTTP to HTTPS switch.
HTTPS SEO Next Steps
Okay, the technical part is almost over.
To ensure the website is fully working and remains SEO-friendly on Google, after your website switches to HTTPS, make sure this process is part of the next steps:
- Verify all images and assets are using HTTPS.
- Check and update all internal and external links to the HTTPS version including social icons.
- Verify both HTTP and HTTPS website in Google Search Console and set your preferred domain to HTTPS.
- Perform 301 redirects to point HTTP URLs to new HTTPS URLs.
- Update your XML sitemaps and resubmit to Google Search Console.
- Monitor your website for 404 Errors or indexing errors.
Be Aware of Google’s Mobile Speed Index Update!
So you got HTTPS covered, but are you aware of the other Google updates that will affect your site, too?Tell Me More
HTTPS Wrap Up
The fact is, your website is nothing without visitors.
Security, speed, performance, and mobile-responsiveness impact how your customers find and engage with your website through Google.
Maintaining best practices, like implementing HTTPS, helps your business attract new customers, provides trust, and enhances your website’s visibility on Google.
Don’t miss out! Get the leads, conversions, and sales you need with Strategy on your team. Contact us today.