Security and Encryption

HTTPS requires that the client use SSL or TLS to protect requests and traffic by encrypting the information in the request. HTTPS is just HTTP with extra security!

HTTPS Keeps Your Messages Private, but Not Your Identity

We won't cover how encryption works in this course, but we will in later courses! For now, it's important to note that while HTTPS encrypts what you are saying, it doesn't necessarily protect who you are. Tools like VPNs are needed for added privacy.

HTTPS Ensures That You're Talking to the Right Person (or Server)

In addition to encrypting the information within a request, HTTPS uses digital signatures to prove that you're communicating with the server that you think you are. If a hacker were to intercept an HTTPS request by tapping into a network cable, they wouldn't be able to successfully pretend they are your bank's web server.

Click to play video