GRC Viewpoint

New Security Option for Google Chrome, Prevents HTTP Downloads

Google is reportedly focusing on an innovative security option to prevent insecure HTTP downloads in Chrome.

HTTPS has advanced to be the standard. Earlier, it was more or less associated with websites that were privacy-oriented. Banks would be the best example.

As HTTPS has spread more widely on the internet, Google Chrome is getting ready to include a security feature to prevent “insecure” downloads via HTTP.

READ MORE: Google Enhances Android Security through Memory-Safe Programming Languages

As more websites handle user data daily, HTTPS encryption has replaced the earlier requirement that only privacy-sensitive websites, like banks, be secured. As a result, Google has been enhancing Chrome’s security features over the past few years to promote the adoption of HTTPS connections whenever possible.

This new setting will first be hidden behind a Chrome flag to prevent unsafe HTTP downloads. However, it will eventually be accessible via the “Always utilize secure connections” checkbox.

READ MORE: Data Privacy Laws: From A 2023 Perspective

The browser’s address bar now prominently displays “Not Secure” next to any older HTTP website. Additionally, by default, Chrome prevents secure websites from giving insecure downloads or using insecure web forms. Mixed content refers to this fusion of safe and unsecured components.

In Chrome’s security settings, the business more recently added a checkbox for “Always use secure connections.” By enabling this, you’re instructing Chrome to try to “upgrade” to HTTPS versions of websites if you inadvertently access an insecure one. If a secure version isn’t available, a warning message appears on the screen and asks you if you want to proceed.

Related Articles

Latest Articles