News

Keeping You Secure

Posted by Gavin Carvell on Friday 7 April 2017
Gavin Carvell

In line with best practice for websites, we recently took the decision to join the small percentage of companies whose website has HTTPS enabled.

If you're frowning at the screen wondering what HTTPS means, or are unsure of how it benefits you or your company, here is a quick explanation:

What is HTTPS?

HTTPS is simply a secure form of HTTP, or Hypertext Transfer Protocol, which is the 'language' of the World Wide Web. Having HTTPS means that all communications between your browser and our website are encrypted.

blog-keeping-you-secure-https-hypertext-transfer-protocol.jpg

HTTPS was developed in 1994 to allow secure transactions and authorisation, and is used on websites for the same reason. It is used widely by financial institutions and for e-commerce sites, but is not yet in widespread use on traditional websites.

HTTPS is very like HTTP because it follows the same basic protocols, and in both cases, your web browser creates a connection with the website server on a standard port. However, HTTPS offers an extra layer of security because it uses TLS to transfer data.

So, what is TLS?

TLS, or Transport Layer Security, enables a secure connection between your browser and the website server.  This way data such as personal data, credit card numbers and passwords can be transferred safely from one to the other.

blog-keeping-you-secure-tls-ssl-transport-layer-security.jpg

In switching our website over to HTTPS we're providing you, as the end user, three key layers of protection:

  1. Encryption - all data exchanged between your browser and our website server is encrypted, preventing eavesdroppers from 'listening in' on conversations, tracking your activities, or stealing your information.
  2. Data integrity - data cannot be modified or corrupted during transfer without being detected.
  3. Authentication - this ensures that you are communicating with Corgin as intended and protects against man-in-the-middle attacks.