Chrome Will Start Labeling All HTTP Websites as ‘Not Secure’ Starting July 2018

Emily Schechter, Chrome Security Product Manager writing on the Chromium Blog:

For the past several years, we’ve moved toward a more secure web by strongly advocating that sites adopt HTTPS encryption. And within the last year, we’ve also helped users understand that HTTP sites are not secure by gradually marking a larger subset of HTTP pages as “not secure”. Beginning in July 2018 with the release of Chrome 68, Chrome will mark all HTTP sites as “not secure”.

This is fantastic, and I whole-heartedly welcome this move.

If you have a website, there’s no real reason why you’re still not using https. Services like Let’s Encrypt make it super easy to do so, and if your host doesn’t support them (or any alternative) yet, it’s time to move.

At the very least, go sign up for CloudFlare and start using the Free SSL option.