28 February 2018
Bulletproof TLS Newsletter is a free periodic newsletter bringing you commentary and news surrounding SSL/TLS and Internet PKI, designed to keep you informed about the latest developments in this space. Maintained by Hanno Böck.
Google has been a major force in pushing HTTPS by default. For years, Google stated that the plan was to mark all HTTP connections as insecure in the Chrome browser eventually. However, this was a change that couldn’t happen overnight. It would have caused too many warnings for average Internet users, ultimately leading to warning fatigue.
But now, due to the rise in HTTPS connections, Google has decided that the time for a secure web by default has come. In July, with the release of version 68, default warnings for all HTTP web pages will land in Chrome.
This outcome was prepared over a long period. Chrome started by showing warnings on login forms and later extended that to all input forms. Also, many powerful web features like microphone access, geolocation, or HTTP/2 have been offered only via HTTPS. Mozilla has implemented similar measurements.
This subscription is just for the newsletter; we won't send you anything else.
Designed by Ivan Ristić, the author of SSL Labs, Bulletproof SSL and TLS, and Hardenize, our course covers everything you need to know to deploy secure servers and encrypted web applications.
Remote and trainer-led, with small classes and a choice of timezones.
Join over 1,500 students who have benefited from more than a decade of deep TLS and PKI expertise.