Facebook has enabled HTTPS for everyone

    image

    Facebook today announced the completion of the transfer of all site users to HTTPS, writes The Next Web. Prior to this, since 2011, users could enable this protocol, which supports encryption, if they wish.

    According to Facebook, more than a third of users have already used HTTPS. Now all the traffic on the Facebook site and 80% of the mobile version will go through a secure connection. The users of the mobile version have not yet been fully translated, because there are phones that do not support HTTPS.

    Interestingly, since 2011, more and more users have enabled HTTPS on their own. Their number reached 35% before Facebook started switching all users to HTTPS by default.



    In addition to enabling HTTPS by default, the social network plans to take additional security measures this fall using the following mechanisms: 2048-bit RSA keys, which Google is also switching to now, elliptical cryptography, ECDHE key exchange, certificate enforcing, and HTTP Strict TransportSecurity.

    Those who are interested in the detailed details of the process of transferring more than a billion users to HTTPS can read Scott Renfro, post of security infrastructure engineer.

    Also popular now: