15 June 2018
It has been a long time coming, but starting in July the Google Chrome browser will mark all websites that are delivered over HTTP as “Not Secure”. You can read the announcement from the Chrome team on their blog.
For most RedShield customers this won’t cause any problems, as we always encourage websites to be served over HTTPS, so you get the benefits of on-the-wire encryption.
However, we have a few customers with HTTP sites that don’t automatically redirect to HTTPS, usually for legacy reasons. If you would like to implement HTTPS, please get in touch with email@example.com.
CERT NZ has also issued an advisory with some advice.