SlideShare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our User Agreement and Privacy Policy.
SlideShare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our Privacy Policy and User Agreement for details.
Successfully reported this slideshow.
Activate your 14 day free trial to unlock unlimited reading.
On The Road To HTTPS Everywhere / BrightonSEO 2017
Find out HTTPS benefits beyond what is generally known and HTTPS usage today. Learn more about TLS, type of TLS Certificates, HSTS and best way to implement HSTS. Step by step HTTPS migration. Discover how some HTTP headers, configuration and check tools can help you during HTTPS migrations.
Find out HTTPS benefits beyond what is generally known and HTTPS usage today. Learn more about TLS, type of TLS Certificates, HSTS and best way to implement HSTS. Step by step HTTPS migration. Discover how some HTTP headers, configuration and check tools can help you during HTTPS migrations.
15.
@aysunakarsu @searchdatalogy #brightonseo
“We're committed to making the web
a safer place not only for Google users,
but for all users. HTTPS makes it
difficult for Internet Service Providers,
governments and others to watch
what you're doing online.”
Google
16.
@aysunakarsu @searchdatalogy #brightonseo
Motivating HTTPS migration
By SEO
23.
@aysunakarsu @searchdatalogy #brightonseo
Type of TLS certificates
Domain Validation Organization Validation
Extended Validation
By validation level
24.
@aysunakarsu @searchdatalogy #brightonseo
Type of TLS certificates
By secured domains
Single Name
https://www.firstsite.com
Wildcard
https://www.firstsite.com
https://blog.firstsite.com
https://shop.firstsite.com
Multi-domain
https://www.firstsite.com
https://www.secondsite.com
https://www.thirdsite.com
25.
@aysunakarsu @searchdatalogy #brightonseo
5
HSTS
HTTP Strict Transport
Security
41.
@aysunakarsu @searchdatalogy #brightonseo
Collect data
Staging
Production
Crawl sites
Web server logs
Analytics tools
E.g. Google Analytics
Google search
console
External Links
E.g. Majestic
42.
@aysunakarsu @searchdatalogy #brightonseo
Analyze data (staging)
Urls of the links, web
assets on the page
Url of the page
Scheme
(protocol)
Tags
Canonical
Hreflang
Meta
HTTP Headers
Status code
Content
On each page check
46.
@aysunakarsu @searchdatalogy #brightonseo
Mozilla TLS observatory
https://observatory.mozilla.org/
47.
@aysunakarsu @searchdatalogy #brightonseo
Register (destination site)
Google Search Console
https://example.com
https://www.example.com
https://m.example.com (If mobile on the origin)
https://fr.example.com (If subdomains on the origin)
https://www.example.com/fr/ (If directories on the origin)
48.
@aysunakarsu @searchdatalogy #brightonseo
Configure (destination site)
Analytics tools
E.g. Google Analytics
Google
search
console
Urls parameters
Geotargeting
Disavow
Preferred domain
Submit sitemaps
Replicate origin’s
configuration
52.
@aysunakarsu @searchdatalogy #brightonseo
Collect & analyze data
Web server logs
Crawl
Production site
Analytics tools
E.g. Google Analytics
53.
@aysunakarsu @searchdatalogy #brightonseo
Update urls
Owned media
Profile links
E.g. Facebook, Twitter, Linkedin
Partner sites
Ad campaigns
54.
@aysunakarsu @searchdatalogy #brightonseo
8
After
55.
@aysunakarsu @searchdatalogy #brightonseo
Collect / monitor / analyze
data
Sitemaps
Production site
Crawl
Web server logs
Analytics tools
E.g. Google Analytics
Google search
console
External Links
E.g. Majestic
57.
@aysunakarsu @searchdatalogy #brightonseo
“Protecting less sensitive
sites strengthens the
protections of more
sensitive sites.”
https://https.cio.gov/
“The good we secure for
ourselves is precarious
and uncertain until it is
secured for all of us and
incorporated into our
common life.”
Jane Addams