Chris Dzombak

Does everything need to be HTTPS?

In light of Google finally kicking off their plan to mark plain-old-HTTP as insecure in Chrome

…some are wondering whether encouraging all sites to move to HTTPS is worthwhile.

Q: Does everything need to be HTTPS?

A: Yes.

Selectively encrypting only “secret” information creates several problems:

1: This is just an example. I rarely use public Wi-Fi, and if I do I connect through a trusted VPN. Don’t @ me.

Additional Reading


As always, I welcome discussion and feedback; I’m @cdzombak on Twitter.