Right now when we enter a web page we must look at whether at the beginning of the URL you specify ‘HTTPS’. This indicates that our connection to the server is fully encrypted and therefore we are on a secure web page. Thanks to this encryption, the information we receive and send is between the server and ourselves.
Obviously this certificate is granted by a specific entity that we trust and endorses the page. This gives us the most absolute peace of mind that we are on the correct website. Right now These certificates are requested for several years and this can be very detrimental to the security of the users, since they would become obsolete soon and would be more vulnerable to pishing attacks.
This is where the new Apple guidelines will come in, which will filter by digital certificates in Safari. This will make all new certificates must have a maximum validity of 398 days to be considered valid by WebKit. In this way, Apple will force certificates to be renewed more regularly and therefore ensure that they are using the most optimal encryption. Otherwise the websites would be completely obsolete certificates and therefore may suffer serious security problems.
Obviously here comes the dedication that website developers have. With this measure they must spend some time updating the encryption certificates, always migrating to a much safer encryption system. This is a fairly simple task, although surely those services that offer automatic renewals of their certificates will soon be extended.
This is undoubtedly very good news for users who visit some websites with some frequency. Above all we talk about those places where we work with quite delicate information such as banking entities. Now Apple will force developers to provide greater security to your websites, although we must see when this measure is finally applied that has been discovered by iGiant.
And you, what do you think of this change in Apple’s policy with Safari?