Register now or log in to join your professional community.
HTTPS is secure (SSL) version of HTTP Protocol. Main purpose of HTTPS is used to secure the data communication from Sniffers.
However, it is not a good practice to implement it with every website, because if a website is public and do not require any authentication then, there is no need to attach an additional encryption/decryption overhead to the data communication process.
Also, it is good (not mandatory) if the website Security Certificate is required to be signed by an Trusted signing authority.
Now-a-days, almost every website is using HTTPS for the user/session specific webpages and HTTP for the public pages.
Therefore, If someone is not using HTTPS accordingly, then it must not have awareness about the circumstances.
It is for security reasons.
because HTTPS More Expansive HTTP
- Ultimately it will affect speed in the long run - doesn't make use of cache
- Web hosting limited to1 IP (no virtualization capability)
- Not all companies can afford this type of protocol
