Web
HTTP vs HTTPS
HTTP and HTTPS are the protocols browsers use to talk to servers. HTTPS is HTTP layered over TLS encryption.
Side-by-side comparison
| HTTP | HTTPS | |
|---|---|---|
| Encryption | None (plaintext) | TLS-encrypted |
| Default port | 80 | 443 |
| Data integrity | Not guaranteed | Protected from tampering |
| SEO | Penalized | Ranking signal |
| Browser UI | “Not secure” warning | Padlock / secure |
When to use HTTP
- Essentially never for production
- Local development only
When to use HTTPS
- Always, for any public site
- Anything handling user data, logins, or forms
Bottom line
Always use HTTPS in production. With free certificates (Let’s Encrypt) and automatic HTTPS from most hosts and CDNs, there is no reason to serve plaintext HTTP.