Google’s Chrome browser will soon try to use HTTPS as default when users forget to type the HTTP or HTTPS prefix. The move is in line with Chrome engineers efforts to increase browser safety.
These HTTPS-first changes will arrive in Chrome 90, scheduled to be released in mid-April this year. At present, when a user types a link in the Omnibox – Chrome address (URL) bar — Chrome will load the typed link, regardless of protocol. But if users do not add the protocol, Chrome will add the prefix “http://” and attempt to load the domain via HTTP.
According to Chrome security engineer Emily Stark, this will change in Chrome 90. Starting with v90, Chrome will try to open the site via “https://” when users leave out the prefix when typing a URL.
Google had earlier said that safe browsing in Chrome automatically protects you from malicious ads and warns you before you visit dangerous sites or download suspicious files.
If you use Chrome, your password protections are automatically built-in, Google said.
Chrome already warns people when they are about to enter sensible information including passwords or payment card data on unsecured HTTP pages. It also blocks downloads from HTTP sources if the page URL is HTTPS, said the report.