I was asked this question not too long ago, and didn't have a good answer...
Is there a good reason why a site that has an SSL certificate wouldn't use https:// for their entire site rather than http://
Are there SEO issues? Performance overhead for the server?
Just in case it matters, we use LAMP stacks.
Thanks!
A few reasons:
Note, however, that a lot of sites do do this. For example, several of the banks I use are always https
, even for the parts that don't require it.
Using SSL/TLS does no longer add very much overhead: http://www.imperialviolet.org/2010/06/25/overclocking-ssl.html
(As @erickson said in a comment on this page, the most computationally expensive part is the handshake. Good comment in general.)
I think you may get a loss in performance in some cases because browsers tend not to keep content obtained via HTTPS in the file cache if you close them (assuming that it's sensitive content that shouldn't be kept on disk), therefore you wouldn't benefit from the browser's cache and would have to reload the content.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With