X-Cart logo 1-800-657-7957

What Is HTTPS and SSL, and Why Your eCommerce Website Badly Needs Them Both

Helen Golubeva Author

SSL, HTTPS, HTTP, TLS, HSTS…

These terms appear to be nothing more than just a meaningless sequence of letters for the better part of online users.

But not for you. Even if you are not an IT geek or server administrator guru, you are likely to have at least a general idea of what these confusing high tech buzzwords mean.

Especially now, when Google uses HTTPS as a ranking signal and gives HTTPS pages a huge bump in rankings.

And taking into account that this behemoth search engine is responsible for a whopping 77,82% of organic search traffic, you’d better take it seriously.

What is HTTPS?

HTTPS (Hypertext Transfer Protocol Secure) is a network protocol designed to protect your store from possible cyber attacks and secure all sensitive data transfers, such as credit card transactions, logins and other personal information passed from a visitor’s browser to your website.

There’s no need to go into the mind-bending process of HTTPS configuration to understand the basics.

There are merely three simple things you should know about using HTTPS protocol for your eCommerce website:

With HTTPS on board, all these crafty scams are in no way possible.

Does Your Business Need HTTPS?

Google’s HTTPS algorithm was first announced on August 6, 2014 (it’s been almost 2,5 years already!), held the same sway over SEO in 2016 and is still prioritized now.

On January 27, 2016, Parisa Tabriz, Google’s self-appointed “Security Princess”, tweeted about the company’s plans towards the future of unsafe HTTP-sites.

They are going to shame them with a big fat red “X” mark placed over the padlock icon in the URL bar for Chrome users.

Is this what your plans were about? Hope, not. So don’t hesitate to start planning your HTTPS migration today.

Luckily, you can make your online store HTTPS-compliant with absolutely no hassle at all.

First of all, you’ll have to install SSL certificate. There is a wide range of SSL certificate providers in the World Web.

Just Google it.

Luckily, you don’t have to travel far afield as SSL Certificates are also offered by X-Cart. And this option is rather cost-efficient. For instance, standard Comodo SSL, providing strong protection and great flexibility, costs from $6/mo and is installed in less than 10-15 minutes.

Not sure if you already have SSL installed? Run a free SSL Server Test — if the results are other than A, you’ve got some security issues.

HTTPS Is Not Only About Security…

It’s quite clear that HTTPS has something to do with security of your customers’ data, stored and transferred via non-secure-by-default public networks.

How else can migrating to HTTPS be important for your eCommerce business?

HTTPS Myths and Challenges (oh boy, are there any?)

Myth #1. Only enterprise eCommerce businesses can afford the move to HTTPS

Nowadays big companies, like Moz or Buffer, love to boast about switching to HTTPS: “our SEO-specialists made a thorough link analysis”, “devs prepared the environment”, “data scientists made a bottom-line report”, and other blah.

Reading these reviews here and there you might think that only million-dollar businesses (with thousands of visitors crawling their pages daily) have enough power to move to a new protocol.

Hopefully, there’s nothing to be afraid of and even if you are the only employee, you can change HTTP to HTTPS quite easily.

Myth #2. OMG, migration to HTTPS will crash my store!

Major sites like Wikimedia or Reddit were quite quick to migrate to a safer world. Everything went smooth and none of the passengers was hurt.

However, not everyone was that lucky. Buffer, for instance, faced a steep drop in organic traffic accurately after they switched from HTTP to HTTPS. Later on, Google admitted that it was their fault and traffic was restored soon.

Yes, there may be some obstacles, but they are hardly possible to bear upon small and medium businesses, we’ve tested it.

And, needless to say, your eCommerce site won’t be cracked into pieces, be sure!

Myth #3. There would be a number of errors & Google will ban me forever (I’m feeling lucky)

No, it’s not true. Of course, mistakes can happen, but one can easily eliminate them.

Have a look at your URLs — some of them may be blocked by robot.txt, or canonical tags can point at the wrong HTTP URLs.

Remember to carefully check it all before making any move from HTTP to HTTPS. Or ask your sysadmin to fix it for you, he knows it for sure.

When done right, you won’t find a single error, don’t fret ahead of time.

Myth #4. My store will be slower than a herd of snails traveling through peanut butter, boo-hoo…

As HTTPS requires extra client-server communication “handshakes”, speed issues can occur. In extreme cases, SSL negotiation may add an additional half a second to your page loading time.

It can be caused by various reasons: data center location, where you host your DNS records, ping issues, and so on. Good news is that all these things can be easily fixed. Moreover, you have a team of professionals and a good portion of theory on speeding up your store.  

For example, one of our customers, Hwai Shieh at Boba Tea Direct, did experience some speed issues after migrating to HTTPS. SSL negotiation took the whole 400 ms which was way too much. With a bit of magic applied, our hosting pros managed to boost speed by as much as 4 times.

The speed problems are totally unlikely for those who host their stores on X-Cart fully-managed VPS servers.

Myth #5. I’ll have to pay a whole lot of money for keeping my store HTTPS-ready

Many webmasters pay up to $800 per year for SSL certificates. That’s a significant amount for those who has just started selling online.

But, of course, there exist cost-efficient options. For instance, X-Cart SSL Certificates cost from US $73/yr for a standard SSL to $299/yr for Extended Validation SSL, when the name of your company is written in the URL.

By the way, you can get a life-time certificate at no charge at all, if you switch to any Hi-Volume Hosting plan.

What’s more exciting is that X-Cart partnered with Comodo to swing you a 20% discount for all SSL certificates. It means that X-Cart prices are currently lower than official Comodo retail prices. So, you can save big.

SSL installation costs $99, but it is totally free if you host your store with us, or if you purchase either a standard 3-year SSL certificate or a 2-year EV SSL.

Myth #6. My store is not yet ready for migration. Maybe tomorrow?

No doubt, migration to HTTPS takes a certain time and a bit of preparation.

But, as we all know, forewarned is forearmed. So, if you heed our advice, you won’t make any mess.

Be sure to do the following:

Some of the X-Carters have already migrated to HTTPS. Have a look!

Stand-Out

Fast Growing Trees

Terrys Fabrics UK

Exit mobile version
Exit mobile version