It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
originally posted by: Medusa18
It means that any data transfered on ATS including email, ATS password, etc is unsecured and could be suceptible to middleman exploits.
I work in digital marketing and definitely would recommend making a switch to A) truly protect members' data B) improve search engine rankings and C) maintain compliance with California state laws.
A certificate costs about $150 for a site.
It's actually illegal to NOT use encryption if a site is shown to users in the state of California under the Online Privacy Act, if the website asks for information such as email, credit card or bank acc info, social security etc.
Also, legally you must have a link to the privacy policy accessible from the home screen and clearly labeled under the California act... legally, I would suggest being in compliance, or risk potentially catastrophic lawsuits from California users if your data is ever hacked...
California online privacy protection act info
consumercal.org...
A certificate costs about $150 for a site.
originally posted by: toysforadults
unless it's plaintext or someone has the key they cannot decrypt your password
originally posted by: Medusa18
It means that any data transfered on ATS including email, ATS password, etc is unsecured and could be suceptible to middleman exploits.
I work in digital marketing and definitely would recommend making a switch to A) truly protect members' data B) improve search engine rankings and C) maintain compliance with California state laws.
A certificate costs about $150 for a site.
It's actually illegal to NOT use encryption if a site is shown to users in the state of California under the Online Privacy Act, if the website asks for information such as email, credit card or bank acc info, social security etc.
Also, legally you must have a link to the privacy policy accessible from the home screen and clearly labeled under the California act... legally, I would suggest being in compliance, or risk potentially catastrophic lawsuits from California users if your data is ever hacked...
California online privacy protection act info
consumercal.org...
One common misconception about HTTPS is that the only websites that need HTTPS are those that handle sensitive communications. Every unprotected HTTP request can potentially reveal information about the behaviors and identities of your users. Although a single visit to one of your unprotected websites may seem benign, some intruders look at the aggregate browsing activities of your users to make inferences about their behaviors and intentions, and to de-anonymize their identities. For example, employees might inadvertently disclose sensitive health conditions to their employers just by reading unprotected medical articles.