What to Know About Safari's "Not Secure" Warning
As data thieves grow more sophisticated, browser companies like Google and Mozilla continue to come up with better ways to thwart them. In the past year, Chrome and Firefox have both committed to showing “not secure” warnings when users visit non-encrypted websites. This isn’t just a way to let people know they’re taking risks with HTTP websites. It’s also a good way to protect users from sharing sensitive information and falling victim to a subsequent phishing attack. Now, Safari has joined the ranks of Chrome by creating a Safari Browser Warning that will alert users to the danger of using HTTP, as opposed to encrypted HTTPS, sites.
If you’re not sure what the change will bring for you, here are a few things to be aware of.
What does the "Not Secure" Warning mean on Safari?
When you get a Safari Browser Warning, all it means is that you’re about to enter a non-encrypted site at your own risk. When you’re using Safari, you’ll be able to tell how secure a site’s certificate is by checking the address bar. If there’s a gray image of a lock next to the URL, it means that the site is certified, but not as secure as it could be. A green image of a lock means that a site is using an
EV certificate, which is a more sophisticated form of encryption. These HTTPS websites generally belong to large corporations such as Apple and Amazon and are considered extremely safe from data hacks. If the text before the URL reads “Not Secure,” it indicates a non-encrypted website. This Safari Browser Warning helps inform users that they’re going somewhere that isn’t protected and therefore should exercise caution, especially regarding online forms that ask for sensitive information.
Why is HTTPS Important?
In the past, HTTPS websites and non-encrypted HTTP sites were on an equal playing field. Browsers only just started to distinguish between sites that are safer for storing and sharing private info and unprotected HTTP addresses that could make way for fraud. In the early days of the internet, HTTP sites used a basic SSL certificate to help browsers and webpages communicate. As data thieves grew more intrepid, the protocol changed. Today, HTTPS Websites are the gold standard when it comes to online security. To protect users from being falsely redirected to a phishing site, an encrypted certificate provides a unique key to users so they can access the page they’re looking for without being purposely misdirected.
How Can I Ensure My Site is Deemed Secure by Safari and Other Browsers?
The new Safari Browser Warning was put in place to keep users safe from data theft, phishing, and fraud. If you have a website that’s still operating on the HTTP level, it’s in your best interest to
purchase an encrypted certificate for your site. You won’t just be protecting every visitor to your site from now on. You’ll also be protecting the integrity of your business. If you haven’t made the switch yet, you can easily purchase an extended validation certificate or encrypted SSL certificate online.