Since Google’s announcement, SSL protocol has been in the news. However, the awareness about SSL was in the primary stage but after this announcement, enterprises are running behind SSL to secure their website against unwanted SSL warnings. How SSL does have impacted the global websites? How the user pattern is changing in accessing the web? What is percentage are there denotes to non-secure sites? All these questions can be answered from given study about fascinating SSL facts. So, lets dive into research about SSL certificate.
BuitlWith spotted 85,167,054 SSL cerificates on the internet.
From top-visited 1 million sites, 1,946,522 detected with certificates. Most certificates were detected in US sites than Germany and the UK.
Among the Alexa Top 100,000 websites, almost 21% of websites are not using HTTPs.
According to the report, 20,911 of top 100,000 Alexa websites don’t use HTTPs. This ration is not negligible, but fortunately, these websites are adding SSL Certificate.
In September 2019, 94% of pages loaded on Google are having HTTPs.
At the starting of 2014, it was 50% now the results are almost double. Among all other platforms Linux is behind with 71%, MAC and Chrome have reached 90% of Secured pages.
Around 70.8% of the unencrypted user traffic to Google is from mobile devices.
Some of the older devices are not supporting updated encryption, standards, or protocols. Unfortunately, many people don’t even have software updates, this way it is near to impossible to support encryption.
According to the report of SSL Labs, 30.5 % of sites are having inadequate security
SSL Pulse is a project created to continuously gather SSL and TLS stats from 150,000 websites, based on Alexa’s list. The last report was scanned on 3rd of September, total 42,469 sites are having inadequate security
The most used and popular Certificate Authority is Let’s Encrypt, 56.7% certificates have been used.
As per the Censys report, Let’s Encrypt is the top used SSL Certificate Authority with 223,014,479 websites. CloudFare and cPanel are following Let’s Encrypt by 14.98 % and 8.16% respectively.
Certificate Authority Global Market is anticipated to reach $114 million in 2024.
As stated by Zion in 2017 the CA market value was $57 million and it is expected to increase $114 million, more than double.
Over 90% of the Internet’s HTTP traffic will be secured over SSL/TLS by the end of 2019.
It has been stated in the results of almost every research that we are getting closer to a 100% encrypted web.
85% of online Customers avoid unsecured websites.
Online shoppers have been worried about their security, that’s why they check first if the website is secured with the padlock in front of the URL and their information will be shared with encryption.
1 in 10 URLs is still malicious in 2019.
According to the report, the huge number of URLs are detected formjacking in which when attackers load malicious code onto retailers’ websites to steal shoppers’ credit card details. In result, on average, more than 48,000 unique websites are compromised each year.
Google has been using HTTPS as a ranking signal since 2014.
If you want your website in the rank, you must use encryption. The search giant is putting more stress on the importance of a secure connection. That’s why SSL certificates have become a must for every site owner relying on Google for traffic.
95.78% of all certificates on the internet are issued by just 9 authorities.
Those 9 authorities are Let’s Encrypt, CloudFlare Inc, cPanel Inc, DigiCert Inc, Sectigo Limited, GoDaddy.com Inc, COMODO CA Limited, Plexs Inc, Western Digital Technologies.
Top 100,000 websites still support SSL 2.0 and 3.0
It is true that top websites are still running on SSL 2.0 and 3.0 and the ratio of such website is 6.8%. Regulatory bodies have strictly denied using such obsolete SSL versions.
Chrome has recorded 90.2% of the browsing time on secured pages.
The number shows movement of security that site holders want to give to their users. Chrome supported platforms recorded 90.2% browsing time on HTTPS secured pages, which was close to Android (88%).
There are 68% sites are running on TLS 1.0
However, the current version of TLS is 1.3 while SSL 2.0 and 3.0 are outdated. The outdated versions seem to be unsecure and are likely to exploit with DROWN and POODLE vulnerabilities. TLS 1.0 and 1.1 will be outdated from 2020 year. Coming to the statistics, 68% websites still use TLS 1.0, 1.9% sites are using SSL 2.0 and 7.6% sites are using SSL 3.0. In nutshell, we can understand from the above figures that SSL certificate helps to secure the website and ranking boosting. If you are still lagging in taking website’s security seriously, then it is time to secure the site. However, use of obsolete SSL and TLS versions are not allowed as it will show warnings regarding SSL version support.