https - why not always use it? - Ecommerce forum at WebmasterWorld

Forum Moderators: buckworks

Message Too Old, No Replies

https - why not always use it?

why not use it as default?

Snurk

2:32 am on Aug 16, 2005 (gmt 0)

Hi everyone!

I was thinking of playing with ssl, and install it on my server, but then.. I am a newbie so if I'm asking stuff thats already fully explained somewhere pls point me in the right direction :)

Why dont sites use https by default? I mean why not include all content as https?

//SNURK

Prolific

2:50 am on Aug 16, 2005 (gmt 0)

Speed. It takes time to encrypt and decrypt the data.

sun818

4:10 am on Aug 16, 2005 (gmt 0)

It also utilizes more of the server CPU. In a shared server environment, this bogs down performance. I do support checkout pages being served via HTTPS. It is technically not necessarily, but buyers will feel more safe entering in their personal details. Really, only the page you are posting to needs to be secure, but try explaining that to your customer. :)

Snurk

10:57 am on Aug 16, 2005 (gmt 0)

Hmm. I see, but lets say I want a secure login page. Does both the login form page and the inside part need to be in https to be secure?

- or only the page receiving the information form the form html page?
- or only the page where they enter their information?

cheers!

sun818

6:09 pm on Aug 16, 2005 (gmt 0)

No, just "the page receiving the information form the form html page" needs to be secure. But for the sake of positive perception, your login page should be on a secure page with a picture of a giant lock. :)