Website Security

Security is a key receipt in protecting what one holds dearly, and in this case it is website security. There have been and still are different ways to secure a website. For this topic, only http and https are going to be discussed.

 

 

"HTTP stands for Hypertext Transfer Protocol, and it is a protocol—or a prescribed order and syntax for presenting information—used for transferring data over a network. Most information that is sent over the Internet, including website content and API calls, uses the HTTP protocol" (Venafi.) 

 

And HTTPS stands for Hypertext Transfer Protocol Securem, what this simply means is that Https is similar to Http, the only difference is that Https is secured and Http is nopt secured. The security is built with what is called SSL Certificate or TLS. SLL uses a technology called public key encryption. This allows google to varify who the website belongs to, this helps whenever hacking takes place in the website (phishing and fowarding for example).

 

Security is not solely based on using an encrypted website address through SSL and/or TLS, but also entails using CsrfTokens, URL ENCODING,  and etc,. We will discuss this topic further with a newly updated blog-post. Stay tuned.