Earlier in the year, Google announced that it will be phasing out the green secure lock found at the top of most websites. Their Argument? That website security should be so normalized that the only time a website should alert a user is if it is not secure. Currently, all HTTPS websites are identified with a green padlock closely located to the URL. The illustration below provides end users the safety and familiarity that the sites they are currently browsing are secure. What this translates to is that these sites will not transmit important data such as passwords, key phrases, credit card information or personal information to third parties. Hence, the padlock symbolizes a website that privatizes your data and transmission to/from the URL you are on.
While this is concerning that websites will not alert users anymore as to who is protected, it is noteworthy that 83 percent of websites viewed/visited by people on Google Chrome were already protected under the HTTPS:// tag. By the third quarter of 2018, Google plans to fully remove this feature from their web browsers with the launch of Google Chrome patch 69.
Emily Schechter, a product manager for Chrome’s Security platform relayed this information in a blog post on May 17th, explaining to users that, “Since we’ll soon start marking all HTTP pages as ‘not secure,’ we’ll step towards removing Chrome’s positive security indicators so that the default unmarked state is secure.”
Finally, Google announced in February of this year that all websites that do not bear the HTTPS:// tag will be flagged as “Not Sure” regardless if these websites follow HTML protocol and securely storing credentials, information, or personal data.