With the recent lock-down, effected as the result of the Covid-19 pandemic in Zimbabwe, there has been a rise in online shopping and learning platforms. However these platforms have something in common, they require the user to confirm their identity through some authentication protocols and this is mainly done by asking for a username and a password. Ideally this would be the communication between the browser of the client and the web-server hosting the online shopping/learning platform. But have you ever though that someone can intercept this communication.
In cryptography and computer security, a man-in-the-middle attack (MITM) is an attack where the attacker secretly relays and possibly alters the communications between two parties who believe that they are directly communicating with each other. The motivation of this attack would the need to acquire login credentials, bank card information and this would compromise the integrity of the platform.
A typical example of a website that is not employing any technology to protect the information passing between the browser and the web-server is shown in the image below.
The browser is alerting the user that their connection to the web-server is not secure. In other words this website is compromising their user information and any information being passed between the user and the web browser can be hacked. So how can this information be protected.
Well simply installing an SSL certificate on the website. SSL stands for Secure Sockets Layer, a global standard security technology that enables encrypted communication between a web browser and a web server. An SSL Certificate for websites makes your visitors, as well as customers, feel secure and confident about sharing their information as you will be able to protect them. It assists in legitimately earning their trust.
Adding an SSL certificate will do the trick and voila the browser will even tell visitors that your site is secure.
We’d like to announce that we’re adjusting our indexing system to look for more HTTPS pages. Specifically, we’ll start crawling HTTPS equivalents of HTTP pages, even when the former are not linked to from any page.
This means that, for the first time, HTTPS pages will receive an SEO boost and be the default result for searchers. For webmasters, the key will be to make sure they’ve implemented SSL certificates properly to ensure the best possible visitor experience and avoid a temporary drop in rankings.
It is therefore important that any website should have an SSL certificate installed. Get in touch with us on how to install an SSL certificate on you web-application / website.