Autor: Codenga 15.03.2024

When we browse the internet, web browsers communicate with internet servers using the HTTP protocol However, when sensitive data such as passwords, login information, financial information, or personal data are transmitted, there is a risk that this data may be intercepted by unauthorized individuals. To prevent this, the HTTPS protocol was created.

How does HTTPS work?

HTTPS is the secure version of the HTTP protocol, which adds an additional layer of encryption to the data transmission between the browser and the server. Encryption ensures that the data is unreadable for third parties who may try to intercept the transmitted information. The HTTPS protocol uses the TLS (Transport Layer Security) protocol or its predecessor, SSL (Secure Sockets Layer), to ensure secure communication.

Differences between HTTP and HTTPS

We already know that the main difference lies in encrypting sensitive data in the HTTPS protocol. What are the other significant differences between these protocols?

SSL/TLS Certificate

To establish an HTTPS connection, the server must have an SSL/TLS certificate. This certificate is issued by trusted institutions called Certificate Authorities (CA). Thanks to the SSL/TLS certificate, the browser confirms that it is communicating with the genuine server.

Ports

HTTP uses port 80, while HTTPS uses port 443. These ports are used to direct network traffic to the appropriate applications or services on the server.

Security indicator

In web browsers, pages using the HTTPS protocol are marked as secure using a padlock symbol or green color in the address bar. You surely recognize such a security indicator.

Applications of HTTPS

Today, the HTTPS protocol is the standard - it's hard to find websites that do not use this protocol. Users often instinctively check if a particular website uses a secure connection - this is a very good practice that affects our security.