Beginning July 2018 Google will Mark all HTTP Sites as Not Secure

Posted on

July 13th, 2018


According to Google’s Online Security Blog, Google has been striving to achieve a more secure web by advocating the adoption of HTTPS encryption. Google and other major browsers have been marking HTTP sites as not secure using an icon indicator. Beginning this month, July 2018, the release of Chrome 68 will mark all HTTP sites as “not secure”, labeling the sites with that term, as shown below:

Google Not Secure SSL Warning







Earlier this year, Google posted the following progress with HTTPS (SSL):

  • Over 68% of Chrome traffic on both Android and Windows is now protected
  • Over 78% of Chrome traffic on both Chrome OS and Mac is now protected
  • 81 of the top 100 sites on the web use HTTPS by default

Google’s attempting to help all website visitors understand that all HTTP sites are not secure, and continue to move the web towards a secure HTTPS web.

There are many compelling reasons why insurance agency websites should move to SSL, including security, encryption and trust. In October 2017, Google said, “Passwords and credit cards are not the only types of data that should be private. Any type of data that users type into websites should not be accessible to others on the network, so starting in version 62 Chrome will show the ‘Not secure’ warning when users type data into HTTP sites. And eventually, we plan to show the “Not secure” warning for all HTTP pages, even outside Incognito mode.”

Why The SSL Push?

Sites that begin with “http:” are not SSL sites, and thus considered to be “not secure”. SSL sites all begin with https: and would look like this: What is SSL? It is an acronym which stands for Secure Sockets Layer, a de facto standard used to establish an encrypted link between any web server and your browser. SSL helps ensure that the data communicated between a web server and a browser remains private.

Many people fail to understand that the information they transmit over the Internet, which in many instances is not encrypted, is passed through a series of servers (often referred to as hops), before it finally arrives at the intended destination. Any of those servers which transmit your information in this chain, can steal sensitive information such as passwords, credit card numbers or medical information. Sites that use SSL encrypt your data, making the information difficult to steal for everyone except the final destination server. This is important for increased security and to protect confidential information from hackers and identity thieves.

What is SSL Authentication?

SSL provides authentication in addition to data encryption.  For example, let’s say someone fills out an insurance quote request form. These often contain confidential information.  Any one of those interim servers could potentially hijack this confidential information. However, this security issue can be mitigated by using an SSL Certificate from an authorized SSL provider. SSL certificates are provided to verifiable websites, like your insurance agency website, after they have gone through several identity checks to prove they can be trusted.

Google and other major browsers are essentially mandating that insurance agencies and brokers will need to make the insurance websites SSL compliant. SSL certificates are inexpensive, ranging from free to $70 per year depending upon the hosting provider. If your agency has not yet converted your insurance agency website SSL, you should do so immediately. In the near future, clients and prospects may not be able to use your contact us, get a quote or certificate forms. Insurance agencies or brokers needing assistance updating their website or converting to SSL can reach out to the insurance agency marketing experts at StartUpSelling for a complimentary evaluation.

Skip to content