Google’s Unpleasant Surprise for Outdated SSL Certificate Sites
Last month, Google announced that it will display a “Not secure” warning in the left side of the Chrome (version 62) address bar when users attempt to access a site without an up-to-date SSL certificate, as shown below.
If you’re not sure what an SSL certificate is, or what it entails, here’s a great resource from Pixel Privacy on SSL certificates and how they work.
Up until this announcement, this “Not secure” warning only appeared on non-HTTPS website pages that accepted a username and password or credit card. Now, every non-HTTPS form and all non-HTTPS pages viewed in incognito mode will display this warning.
Google will continue to crack down on sites that do not have the correct SSL (secure sockets layer) certificate. Starting with Chrome 66, slated to be released in April 2018, Chrome will remove trust in Symantec-issued certificates issued prior to June 1, 2016. Site operators with certificates issued by a Symantec CA prior to June 1, 2016 will need to replace their existing certificate with a new certificate before the release to avoid the warning being displayed for their site.
How do you know if you have the proper SSL certificate and if you’re affected by this announcement?
Most likely your site will be affected by the movement towards more secure websites. There are a number of ways you can tell if your website has been converted over to HTTPS:
- Ask your web developer (maybe that’s us!).
- Register your website with Google Search Console so Google can notify you that your website is not compliant.
- Open a browser and view your website. Does the left-hand corner of the top address bar have a green padlock with “Secure” next to it? You’re good. Or is it a grey or red “Not secure” message? Your site’s SSL needs to be updated. With this approach, you need to check every page, because sites can be partially converted.
What does this mean for your website if you’re not converted?
If your website has not been converted to HTTPS/has an updated SSL certificate, then visitors are starting to receive a warning every time they visit your website or the unsecure webpage.
Beyond pleasing Google and making your site appear credible and trustworthy to your visitors, an SSL certificate encrypts sensitive information and can help protect you from cybercrime.
If your site is affected and you’re unsure what certificate is necessary for your site, WSM can help you install or update your SSL certificate. Don’t wait! Contact us today to make sure you’re meeting Google’s requirements.