W3Techs
advertise here
provided by
Q-Success
Home Technologies Reports API Sites Quality Users Blog Forum FAQ Search

Featured products and servicesadvertise here

Blog Categories

All

News
Actalis
AddToAny
Adobe Commerce
Adobe DTM
AdRoll
Advertising Networks
Akamai
Alibaba
Amazon
Amazon Associates
Amazon CloudFront
Angular
Animate
Apache
ASP.NET
ASP.NET Ajax
Baidu Analytics
Baidu Share
Bitrix
Blogger
Bootstrap
CDNJS
CentOS
Character Encodings
China Telecom
China Unicom
Chitika
Client-side Languages
Cloudflare
Cloudflare Server
Cloudflare Web Analytics
CloudLinux
ColdFusion
Compression
Concrete CMS
Content Delivery
Content Languages
Content Management
Cookies
CSS Frameworks
Data Centers
DataLife Engine
Debian
Default Protocol Https
DigiCert
DigiCert Group
Discuz!
DNS Servers
Dojo
DoubleClick
Drupal
Elementor
Email Servers
Ensighten
Equativ
ExoClick
Facebook
Fastly
Fedora
Flash
Foundation
Full Circle Studies
Gemius
Gentoo
GlobalSign
Gmail
GoDaddy Group
Google
Google +1
Google Ads
Google AdSense
Google Analytics
Google Hosted Libraries
Google Servers
Google Tag Manager
GridPane
Gunicorn
Histats
Hostinger
Hotjar
HTML
HTML5
HTTP/2
HTTP/3
IdenTrust
Image File Formats
Infolinks
IPv6
Java
JavaScript
JavaScript Libraries
Joomla
JQuery
JQuery CDN
JsDelivr
Let’s Encrypt
Liferay
LinkedIn
Linux
LiteSpeed
Lodash
Markup Languages
Matomo
Matomo Tag Manager
Meta Pixel
Microsoft
Microsoft Advertising
Microsoft-IIS
Modernizr
MooTools
New Relic
Newfold Digital Group
Nginx
Node.js
Operating Systems
OVH
PHP
Pinterest
Plesk
Plone
PNG
PopAds
PrestaShop
Prototype
Python
Quantcast
React
Red Hat
Reverse Proxies
Ruby
RunCloud
Scala
Scientific Linux
Sectigo
Server Locations
Server-side Languages
SharePoint
Shopify
Silverlight
Site Elements
Snowplow
Social Widgets
SPDY
Squarespace
SSL Certificate Authorities
Symantec Group
Tag Managers
Tailwind
Tealium
Team.blue
Telegram
Tomcat
Top Level Domains
Traffic Analysis Tools
Twitter/X
TYPO3
Ubuntu
UIkit
Umeng
Underscore
United Internet
Unix
Unpkg
UTF-8
VBulletin
Web Hosting
Web Panels
Web Servers
Webflow
WhatsApp
Windows
Wix
WordPress
WordPress Jetpack
XHTML
Yandex.Direct
Yandex.Metrica
YUI Library

50% of the websites now redirect their traffic to https encrypted pages

Posted by Matthias Gelbmann on 8 April 2019 in News, Default Protocol Https, Site Elements

Summary:

We have reached a tipping point where encrypted transmission of web pages becomes more common than unencrypted transmission.

In the ancient times of the internet - like 10 years ago - encrypting websites via an SSL certificate was primarily reserved to e-commerce sites and online banking. Two events have changed that: First, in 2014 Google announced that they will use https encryption as a ranking signal, thus providing a strong incentive for webmasters to make the switch. Second, Mozilla and others formed the Internet Security Research Group, which started to hand out free SSL certificates via the Let's Encrypt initiative in 2016.

Https adoption rate has rapidly grown since than. Half of all websites now default to an encrypted protocol by redirecting its http traffic to https URLs. That percentage has more than doubled in the last 18 months.

Interestingly, significantly more sites, namely 67.6%, have a valid SSL certificate issued and installed. However, 17.6% just serve the unencrypted version unless you explicitly ask for encryption by entering the https URL into your browser. That might me laziness in configuring the web server correctly, but there could also be good reasons for webmasters doing so, for example sites may still serve some resources such as images or JavaScript files unencrypted, which might break the https-version of the site.

High-traffic sites are more likely to redirect to https. 85.1% of the top 1000 sites do it. The only top 10 site that currently still servers unencrypted pages is the Chinese search engine Baidu, although they are also reachable via https.

Even more rigorous that redirecting to https is to enforce encrypted communication via the HTTP Strict Transport Security directive. As per today, only 10% of all sites and 39% of the top 1000 sites use that option.

There are quite big regional differences: 79.2% of Dutch sites and 70.2% of German sites redirect, but only 14.0% of Korean sites and 14.5% of Chinese sites do so.

For some reason, also the web server technology of a site seems to play a role: while 57.4% of Nginx-based sites redirect to https, that percentage is only 34.5% for Microsoft-IIS-sites.

I assume at some point in the future all web traffic will be encrypted. Let's see how the trends evolve until then.

_________________
Please note, that all trends and figures mentioned in that article are valid at the time of writing. Our surveys are updated frequently, and these trends and figures are likely to change over time.

Share this page


About Us Disclaimer Terms of Use Privacy Policy Advertising Contact
W3Techs on   LinkedIn LinkedIn Mastodon Mastodon Bluesky Bluesky
Copyright © 2009-2026 Q-Success