HITBGSEC

Tech Sites Are Likely To Be Encrypted--Media And Porn Sites Not So Much

Amid an increase in the public’s interest in security as Apple's AAPL +2.03% ”backdoor” battle with the government rages on, Google has added a new section to its Transparency Report focused specifically on encryption.

While the meat of the addendum focuses on the security of Google products and the percentage of  requests to its servers that are encrypted, the report also breaks out the encryption status of the top 100 most trafficked non-Google sites.  What is alarming is that of these 100 sites—which represent approximately 25% of all web traffic worldwide—more than half of them are not compatible with an HTTPS connection at all. This means that  these domains are unsecure, because they are limited to an HTTP connection.

“The reason why HTTPS is good and HTTP is bad is because when you send traffic over plain HTTP, it is unencrypted. That means that anybody who is sitting on your network can see where you are going, what you are typing and what you are reading.” Eva Galperin, a Global Policy Analyst at the Electronic Frontier Foundation, explained in a FORBES interview. “Basically you are naked on the internet.”