Twitter adds option to always use HTTPS connection
IDG News Service - With the rising awareness and concern over the stealing of passwords and other sensitive data from unsecured Wi-Fi networks, Twitter is the latest online services company to boost its use of encrypted website connections.
Twitter announced on Wednesday that it will give its users the option to always automatically connect to Twitter.com using HTTPS, which encrypts communications between users' computers and Twitter servers.
HTTPS reduces the chances that malicious hackers will intercept and steal their passwords and any other sensitive data exchanged with the website they're browsing.
Previously, Twitter users could connect to the site in this way, but they had to manually type in HTTPS in the URL bar.
"This will improve the security of your account and better protect your information if you're using Twitter over an unsecured Internet connection, like a public WiFi network, where someone may be able to eavesdrop on your site activity," reads Twitter's blog post announcement.
While HTTPS has been standard for years in financial services websites, providers of consumer online services have over the past year started promoting its use to cut down on the number of times their users' accounts get hacked, including Facebook and Google.
There is generally a performance trade-off when using HTTPS, because it slows down the connection somewhat, but the consensus is that the slight inconvenience is well worth the increased protection.
Some websites, like Twitter, let their users configure their account settings so that every time they visit the site they automatically do it via HTTPS.
Others have made HTTPS the default setting for everybody -- something Twitter plans to do later -- while others have gone further and eliminated altogether the option to connect to their sites using a regular, unencrypted HTTP connection.
However, the setting to always use HTTPS currently doesn't extend to Twitter's mobile website, so users must remember to type HTTPS when logging into it.
People who use third-party applications to access Twitter need to check if those applications can use HTTPS or not.
The Electronic Frontier Foundation made a free Firefox plug-in that, whenever possible, chooses an HTTPS connection for every website users visit.
- Twitter's slipping user growth spooks investors
- Get ready to tweet your questions for Twitter's first earnings call
- Super Bowl sets Twitter record, as Volkswagen launches social war room
- Perspective: Twitter's success opens up IPO pipeline
- Update: Twitter goes public at $45 a share
- With IPO cash influx, Twitter could be bigger threat to Facebook
- Ahead of IPO, Twitter shines up multimedia image
- Twitter kicks off pre-IPO investor roadshow
- As its IPO looms, Twitter faces investor grilling
- Twitter experiments with 'Event Parrot' -- a news delivery service
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The 12 PCI DSS 3.0 requirements addressed by Peer 1 Hosting This handy quick reference outlines the 12 PCI DSS 3.0 requirements, who needs to be compliant and how Alert Logic solutions address the...
- Defense Throughout the Vulnerability Life Cycle This whitepaper provides insight into how to leverage threat and log management technologies to protect your IT assets throughout their vulnerability life cycle.
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Securing BYOD Mobile computing is becoming so ubiquitous that people no longer bat an eye seeing someone working two devices simultaneously. Individuals and organizations are...
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Endpoint Backup & Restore: Protect Everyone, Everywhere Arek Sokol from the bleeding-edge IT team at Genentech/Roche explains how he leverages cross-platform enterprise endpoint backup in the public cloud as part...
- Streamline Software Asset Management, Compose a software Management Symphony Keeping track of your organization's software is easy with effective software management solutions from CDW. View the videos in our software solutions channel
- Druva inSync: Endpoint Data Protection & Governance CLICK HERE to watch this video about protecting corporate data on laptops and mobile devices, sponsored by Druva. All Security White Papers | Webcasts