- Date 12 Jan 2018
- Category Insurance Knowledge Base
For Your Knowledge
There are many compelling reasons why insurance agency websites should move to SSL, including security, encryption and trust. Google is making a big push to move all websites to SSL, and said that as of October 2017, “Passwords and credit cards are not the only types of data that should be private. Any type of data that users type into websites should not be accessible to others on the network, so starting in version 62 Chrome will show the ‘Not secure’ warning when users type data into HTTP sites. And eventually, we plan to show the “Not secure” warning for all HTTP pages, even outside Incognito mode.”
What is SSL & Why Is It Secure?
When navigating to a website, you might see a domain name resolve beginning with http: Sites that begin with http: are not SSL sites. All SSL sites begin with https:. SSL is an acronym for Secure Sockets Layer, which is the de facto standard used to establish an encrypted link between a web server and a browser. The SSL link ensures that all data communicated between a web server and a browser remains private.
In other words, SSL keeps information sent across the Internet secure and private, allowing only the intended recipient to receive it in an understandable format. Many people don’t realize that information they send over the Internet is passed from computer to computer, before it finally arrives at the selected destination server. That means that any one of those computers, which are communicating your information in this chain, can intercept important information such as usernames, passwords, credit card information, medical information, etc. SSL encrypts this data, making the information unreadable for everyone except the final destination server. This is important for increased security and to protect confidential information from hackers and identity thieves.
SSL provides authentication in addition to encryption. As mentioned previously, your information will typically be transmitted through a series of computers. A good example of this might be a quote form, which might contain confidential information about prospective insurance clients. Any one of these interim computers could potentially pretend to be the final destination website and hijack your confidential information. This security issue is thwarted by using a Public Key Infrastructure (PKI), and getting an SSL Certificate from an authorized SSL provider. SSL certificates are provided to verified entities like your insurance agency for example, after they have gone through several identity checks to prove they can be trusted. Insurance agencies wishing to accept credit card payments will be required to use SSL for their sites.
Browser Warnings & Visual Clues
Major web browsers like Chrome, Mozilla, Safari and Edge are now providing indicators to help users determine if an insurance website is secure. Site that have SSL indicate that the site is secure in the top left hand corner by using the word secure, or offering visual clues. For example there might be the word “Secure” displayed, or a lock or other icon indicator. Conversely, a site that is not SSL, might contain a warning icon, or indicate in another way that your site is not secure, warning users that they should not send any sensitive information using your website.
It’s only a matter of time before all insurance agencies and brokers will be required to move their sites to SSL. SSL certificates are not expensive, they usually cost between $50 and $70 per year depending upon the hosting provider, and many provide multiyear discounts. Our recommendation is that those insurance agencies which have yet to convert to SSL, should do so immediately. SSL certificates will help protect your agency, your customers, your prospects, and your confidential data. Agencies needing assistance updating their insurance agency website or converting to SSL can reach out to a proficient insurance agency marketing agency.