SaaS CMS has officially launched! Learn more now.

David Knipe
Feb 12, 2018
(4 votes)

Google Chrome will mark your site as not secure if your site isn’t on HTTPS by July 2018 - what this means for you

At the beginning of July 2018 Google Chrome will start displaying an "insecure" message if the site its browsing is not being served over HTTPS:

Image Treatment of HTTP Pages@1x.png

Read more about this change here: Why is this change happening? Well according to Google "You should always protect all of your websites with HTTPS, even if they don’t handle sensitive communications". You can read more about why HTTPS matters here:

Serving your site on HTTPS is important as the eventual treatment of all sites on served on HTTP in Chrome will look as follows:

Image blog image 2.png

Clearly seeing this warning would not be a good experience for your customers!

So why is serving your site over HTTPS important?

Trust is important. When a customer engages with your site they are engaging with your brand or service. This needs to be an engagement of trust. By serving your site over HTTPS you are proving that anything you are delivering to your customer could not have been interfered with as the communication has been encrypted between the browser and the host. 

Also if you and/or your developers want to take advantage of features such as the geo-location API then they require HTTPS:

As an Episerver customer what to do now?

We take trust and privacy seriously at Episerver as documented on our trust centre: and want you to trust Episerver to deliver trusted solutions to your customers.

If you an Episerver Digital Experience Cloud Service customer then your site is probably already being served over HTTPS as this is included as part of the service. If its not, then get in touch with your service level manager to discuss next steps in moving your site over to HTTPS.

If you are on a Episerver managed service contract then get in touch with your Episerver service level manager to discuss next steps in moving your site over to HTTPS.

If you are running your site on premise then you should contact your IT team and/or implementation partner to discuss migrating your site over to HTTPS.

Find out more 

Read more about the change coming to Google Chrome here:

Episerver Trust Centre: 

All images copyright Google 2018

Feb 12, 2018


Arild Henrichsen
Arild Henrichsen Feb 13, 2018 09:52 AM

Also, Google Chrome from version 66 (releasing on April 17th) will issue HTTPS warnings for all sites with SSL certificates issued by Symantec prior to June 1, 2016. 

The reason for Google distrusting Symantec certificates Symantec's history of issuing faulty certificates. 

The result: If your site has a Symantec SSL (HTTPS) certificate dated prior to June 1 2016, Google Chrome v66 will show a big hairy warning that your site in NOT SECURE.

More info:

Please login to comment.
Latest blogs
Getting Started with Optimizely SaaS using Next.js Starter App - Extend a component - Part 3

This is the final part of our Optimizely SaaS CMS proof-of-concept (POC) blog series. In this post, we'll dive into extending a component within th...

Raghavendra Murthy | Jul 23, 2024 | Syndicated blog

Optimizely Graph – Faceting with Geta Categories

Overview As Optimizely Graph (and Content Cloud SaaS) makes its global debut, it is known that there are going to be some bugs and quirks. One of t...

Eric Markson | Jul 22, 2024 | Syndicated blog

Integration Bynder (DAM) with Optimizely

Bynder is a comprehensive digital asset management (DAM) platform that enables businesses to efficiently manage, store, organize, and share their...

Sanjay Kumar | Jul 22, 2024

Frontend Hosting for SaaS CMS Solutions

Introduction Now that CMS SaaS Core has gone into general availability, it is a good time to start discussing where to host the head. SaaS Core is...

Minesh Shah (Netcel) | Jul 20, 2024