Chrome marks sites as insecure if they don’t use https

Google will release Chrome 68 on Tuesday. When an http site is visited, Google’s browser explicitly marks this site as ‘unsafe’. Until now, Chrome did not display any warning text on these types of pages. In the future, the ‘secure’ message should also disappear from https sites.

Google announced this change back in February, but the exact release date of Chrome 68 was not yet known. The rationale behind this change is that sufficient progress has been made towards the adoption of https on the web. Chrome already warned about login pages that do not use a secure https connection.

More such changes are in the pipeline for future versions of Google’s web browser. For example, websites that use an https connection in Chrome 69 will no longer be identified with the word “secure”. That disappears, because Google believes that users should expect that ‘the web is safe by default’ and that they will receive a warning if it is not. Another factor is that an existing certificate says nothing about the security of a site.

Chrome 69 will be released in September. Websites with entry fields that do not yet use https will be indicated in the address bar in Chrome 70 from October with the red text ‘not secure’.

The current change in Chrome 68 regarding http sites

The next step in Chrome 69 regarding the ‘secure’ designation on https sites