Google to Bring HTTPS-First Mode to Chrome BrowserGoogle to Bring HTTPS-First Mode to Chrome Browser
Beginning in M94, Chrome will offer HTTPS-First Mode, which will attempt to upgrade all page loads to HTTPS.
July 15, 2021
Google has confirmed plans to add HTTPS-First Mode to its Chrome browser starting in version M94 and is re-examining the lock icon that browsers usually show when a website loads over HTTPS.
The idea is to protect people from having their information leaked to eavesdroppers who can't intercept data shared over HTTPS. The HTTPS-First Mode will attempt to upgrade all page loads to HTTPS and display a warning before loading sites that don't support it. Based on feedback, Google may decide to make HTTPS-First the default mode for all Chrome users.
Google is also reconsidering the lock icon that typically appears in the browser when a website loads over HTTPS. People often associate this icon with a website being trustworthy, its research shows, but a secure connection does not necessarily mean a website itself is safe. Only 11% of survey respondents knew the meaning of the lock icon, Google reported in a blog post.
Chrome isn't the only browser doubling down on HTTPS. Mozilla introduced HTTPS-Only mode in Firefox 83, a version of its browser that rolled out late last year. HTTPS-Only mode tries to create fully secure connections to every website and requests user permissions before connecting to a site that does not support HTTPS.
Read the full Chromium blog post for more information.
About the Author(s)
You May Also Like
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023
Passwords Are Passe: Next Gen Authentication Addresses Today's Threats
How to Deploy Zero Trust for Remote Workforce Security
How to Use Threat Intelligence to Mitigate Third-Party Risk
Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware
Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks