Advantages of https
🔵Messages can’t be read by any third-party
🔵A certificate guarantees the information a browser is receiving originates at
the expected domain
🔵It’s a guarantee that when a user sends sensitive data, it’s being sent to the
right place, and not to a malicious third party
🔵HTTPS connections make man-in-the-middle attacks much more difficult to execute
🔵Search engines list HTTPS websites higher than sites without HTTPS
🔵The green padlock indicates that your site provider takes security seriously and this gives users confidence
🔵Messages can’t be read by any third-party
🔵A certificate guarantees the information a browser is receiving originates at
the expected domain
🔵It’s a guarantee that when a user sends sensitive data, it’s being sent to the
right place, and not to a malicious third party
🔵HTTPS connections make man-in-the-middle attacks much more difficult to execute
🔵Search engines list HTTPS websites higher than sites without HTTPS
🔵The green padlock indicates that your site provider takes security seriously and this gives users confidence
Disadvantages of https
🔴HTTPS uses a lot of server resources ...
... requires processing power and memory for encryption
🔴HTTPS introduces latencies/delays
🔴SSL connections take longer to set up with more roundtrips
🔴Browser caching does not work properly
🔴Modern sites will run slowly without browser caching
🔴Need to buy an SSL certificate issued by certificate authorities
🔴It is possible to make your own certificate but other users will not trust it so you need to buy one
🔴Warnings can arise that despite using SSL a web page is partially serving insecure content
🔴The browser may not want users to think a site is totally secure but warning can be off-putting to many users
🔴There are proxy caching problems
🔴Everything is encrypted including packet headers and content
🔴Any caching that might have happened between the points at which data isencrypted and decrypted is blocked
Comments
Post a Comment