early years, the HTTP protocol transmitted data is unencrypted, that is, plaintext, so the use of HTTP protocol to transfer private information is very unsafe. In order to ensure that these private data can be encrypted transmission, Netscape Co design SSL (Secure Sockets Layer) protocol for the transmission of data HTTP protocol encryption, which was born HTTPS.
but the HTTPS agreement needs to apply for the CA certificate, generally need to pay. Of course, in order for webmasters, developers to ease the pressure, accelerate the promotion, Mozilla alliance, CISCO and other cooperation Let’s Encrypt open source free certificate also launched in September 2015.
from the latest monitoring data Firefox Telemetry, the current Internet, 50% of the site has enabled the HTTPS protocol, from November 2015 to January 2017, 1 years more than the growth of 10%.
, Google, Facebook and other large Internet Co have announced support for station HTTPS, domestic Taobao, Tmall, Jingdong and other electricity providers website also completed a total switch, can greatly eliminate traffic hijacking, man in the middle attack.
currently, users who use Chrome more than 56 will find that opening the HTTP web site presents an "unsafe" red alert in the address bar.