Why you need one.
Starting with the release of a new version of chrome 56 this month, any website that is not running HTTPS will have a message appear in the location bar that says “Not Secure” on pages that collect passwords or credit cards.
It will look like this:
This is the first part of a staged rollout that encourages websites to get rid of plain old HTTP.
In an upcoming release, Google Chrome will label all non-HTTPS pages in incognito mode as “Not secure” because users using this mode have an increased expectation of privacy.
The long term effect:
In the future the final step in the staged rollout will be that Chrome will label all plain HTTP pages as “Not secure”. It will look like this:
So, once again, any page on your website that is non-HTTPS and has a password form or credit card field will be labeled as “Not secure” in the location bar by Google Chrome.
This may confuse your site visitors who sign in to your website because they may interpret the message to indicate that your website has been compromised. They could also interpret the message to mean that your site has some underlying security issue other than being non-HTTPS.
The Silver Lining:
GOOGLE has promised to take your SSL certificate into account when looking at ranking. This is probably one of the only things Google has ever admitted that will actually help.
The Bottom Line
Do you need SSL immediately? No, not unless you are accepting Credit Cards and passwords online. However, in our opinion the next step is for Google to start targeting regular fill in forms on your site, and then eventually penalise all sites that do not have a SSL certificate.
If you’re interested in adding SSL to your site our cost for 2017 is $85 CDN per year. The certificates have to be renewed yearly. We are anticipating that as this rollout continues the renewal fees will decrease, as there is more and more competition for these certificates.