Why Have an SSL?

The S in HTTPS stands for “secure” as in SSL (Secure Socket Layer) that creates a secure layer between the webserver and the web browser. Having an SSL on a website is like showing proof to visitors you have the very basic website security. It also shows some search engines like Google that you are legitimate. When communicating sensitive information over the Internet, one should keep in mind that a website having an SSL in the very basic website security. Per NIST, SSL 3.1 has been superseded by TLS 1.0 in security standards.  There is no marking in the URL that TLS (Transport Layer Security) is being used like there is with SSL. TLS is used in conjunction with SSL because it needs a reliable transport for its secure(er) communication which uses the HTTP protocol for web browsers. NIST standards state any website that handles sensitive or valuable data and transmits PII such as financial institutions, healthcare, and social media, are to use TLS on their webservers.

Having an SSL is recommended by Google and other search engines for verification due to their algorithm change. If a business does not have an SSL attached to their website, Google Chrome and Firefox will produce an error stating the website is “suspicious” and startle the one browsing into not proceeding.