Google have recently introduced changes to their browser, Chrome, that shows warnings on any webpage not covered by an SSL certificate.
What is SSL Encryption?
SSL (Secure Sockets Layer) encryption protects information that you, the viewer, enter onto a website. For example, an SSL protects the personal data of visitors who sign up for your monthly newsletter and the credit card information of customers who make online purchases.
To prove a site uses SSL encryption, the site owners must obtain a certificate — an SSL Certificate — from their hosting server — often at a cost.
Do all sites/pages need an SSL Certificate?
At the time of writing, not if you aren’t entering data into a web form. Cookies are stored on your device and your IP address is tracked irrespective of any SSL encryption.
You can decline cookies when the annoying message pops up, or clear them regularly; to avoid IP (location) tracking, you need to use a VPN.
Why doesn’t eklar.co.uk have an SSL Certificate?
eklar.co.uk is a single-page HTML site hosted on one server with links to pages here, on this CMS site/blog hosted on WordPress.com servers — I didn’t fancy reinventing the wheel when I set up the website 😉
There are no forms to fill in on the single page hosted at eklar.co.uk. Our ‘Contact Us‘ form is hosted at WordPress.com, which does have an SSL Certificate.
Other web locations without an SSL Certificate (November 2018) are listed below: these are genuine sites representing genuine businesses
- http://www.msv.com/
- http://www.webaddresshelp.bt.com/main?
- http://www.oed.com/
- http://www.ernestdoe.com/
- http://www.yourdictionary.com/
- http://thecricketersinn.co.uk/
Of course, the sites may be genuine, but any information you enter into an online form may not be passed securely between your screen and their server.