Small important change in Chrome: Google will replace the famous padlock icon in front of the Internet address with a more explicit symbol. The goal: to avoid confusion by suggesting that the website is reliable!
You’ve probably noticed it already: all web browsers display a small padlock icon to the left of the URL – the Internet address – of a page or website. This symbol indicates that the connection is made using HTTPS, a secure communication protocol using an encryption system (HTTPS stands for Hypertext Transfer Protocol Secure, or secure hypertext transfer protocol) which theoretically guarantees the confidentiality and integrity of the data exchanged with the server. It is this protocol that makes it possible to send sensitive data – banking information and identifiers, for example – without fear that it will be intercepted or decrypted by third parties – in particular hackers. A secure symbol, especially for connections with services handling confidential data – banks, public services, etc. But a misleading symbol.
Indeed, as Google explains in a blog post, almost 90% of Internet users do not know the exact meaning of the lock icon. And most imagine that it indicates that the site visited is reliable, whereas it simply indicates that the connection is secure. HTTPS is only an evolution of the HTTP protocol for short (for Hypertext Transfer Protocol) which has long been in effect on the Internet. But things have changed a lot since the 2000s, and HTTPS connections have become the norm rather than the exception. Above all, HTTPS in no way guarantees the true nature of a site! Google therefore felt that the time had come to put an end to the confusion caused by this famous padlock.
Padlock in Google Chrome: a false sense of security
Google believes that the padlock, which attests to the use of the HTTPS protocol, can make Internet users believe that a site is reliable. However, today, 95% of web pages on Chrome are done via a secure HTTPS type channel according to Google, including malicious sites. In addition, it does not protect against phishing scams! This is why the Mountain View firm believes that this type of indicator is not relevant for judging the reliability of a website.
Google therefore plans to replace the padlock with an icon with circles and lines similar to the pictograms used for settings or control menus. “This icon does not imply that the site is trustworthy”and is more obviously conducive to the click because it is usually associated with settings or controls”, explains Google. The tech giant has indeed noticed during its studies that few Internet users know that clicking on the padlock allows access to more information on their security and connection settings, with information on the HTTPS certificate. site, data usage, cookies, notifications, location sharing, etc. “We believe the new icon helps make permission checks and additional security information more accessible, while avoiding misunderstandings about this icon”, says Google. The new symbol is due to replace the padlock in early September 2023 with Chrome 117, as part of a larger browser redesign.