HTTP is Obsolete: Welcome HTTPS

Information Security Breaches in 2017 and How to Protect Yourself Online

News in 2017 has been filled with hacking. Election System hacking, Democratic Party website hacking, viruses such as Petya and WannaCry have been all in news in 2017. You would think that your website is nothing of importance compared to those we cited above, and you should not be worried about the security of your website. It is stunning to find out that those hackers learn and practice their skills on regular websites every day. Provide HTTPS access to your website to secure customer information, gain customer trust and business. Without HTTPS enabled any customer submitted data is vulnerable to unauthorized access by hackers. If in a very rare case that a website does not contain any input from users, then you should be concerned about having a secured connection for your website administration. In this case, a hacker is able to see every change you make to your website, which can lead to significant problems. Hacking has been a problem for any government or a business, and the problem is getting bigger and tougher.

Hackers Steal 143 Million Equifax Credit Profiles in September 2017

After initial post of this article, in August of 2017, another unprecedented hack hit the Unites States of America's one of the most valuable company assets. On September 7, 2017 Equifax has announced that credit information of aproximately 143 million people have been stolen. They opened a website where you can check if you have ben a victim or not. If you are a voctim they offer credit protection for free. Unfortunately, after checking on their website everyone in DevelTon was a victim of the cybersecurity incident at Equifax.

Http Warning

HTTPS - Hyper Text Transfer Protocol Secure is becoming needed more in our dangerous society. It enables encrypted connection using SSL (Secured Socket Layer) or TLS (Transport Layer Security) certificate between the browser and the server.

SSL Certificate Type for Different HTTPS Needs

Http Lock in Browser

There are three types of SSL cerificates, that you can get, in order to fulfill your specific needs. DV, OV and EV SSL certificates vary in terms of how much identity verification each involves and how the certificates are displayed in browsers. Let's discuss those three types of SSL certificates, and you can choose which one fits your needs. SSL types are going to be disussed from the least expensive and the least andvanced, to the most expensive and the most advanced.

DV - Domain Validation

Domain validation is the simplest and the least expansive way of verification. DV SSL certificates provide the lowest level of validation. Domain validated SSL certificates (DV SSL) are server security certificates that provide the lowest level of validation available. Company issuing the certificated only verifies the consent of a domain owner. There is no attempt made to verify who the domain owner really is. This type of certificate should be used for internal networks only, customers should not have access to websites with DV SSL certificates and should not use websites with those certificates. DV certificates are easy to get and are used by hackers to simulate a legitimate business and get your information.

OV - Organization Validation

Organization Validation (OV) SSL Certificates need more validation than DV certificates. As a result they provide more teust and assure visitors that you are who you claim to be. The company issuing a certificate verifies your business name and address and makes that information visable to the user in SSL details. An OV SSL Certificate displays a lock and HTTPS prefix in the visitor's browser bar. This tells your visitors they're on an encrypted site and can share their info without security concerns. Organizations that use OV certificates have more customers willing to share their informatio on thir website. This can have a huge monetary impact if you own an online store.

EV - Extended Validation

Extended Validation SSL Certificates are issued as a result of vigorous authority checking. As a result of various verifications, certificate authority (CA) is able to provide verified information about the company and rhe website. Users get more confidence when they see a green bar instead of address bar and the company name before the "https" address starts. Corporations that have OV SSL certificates can see a change in sales after a switch to EV SSL certificate. Banks, online shops, other services can take advantage of EV validated SSL certificates and have HTTPS connection instead of absolete HTTP - unsecure connection.

Choosing the right way to provide HTTPS access is different for every website. You need to choose among SSL and TLS, which each could be one of the following three types: DV, OV, EV. Those choices can affect your website traffic and sales if such present. Not sure what solutions to choose? Our experts at DevelTon will advise you with the best solution possible after learning and investigating your website. Contact DevelTon to discuss your options for HTTPS and other digital projects.