🔒
What is HTTPS?
An internet security system that encrypts data between you and the server, preventing anyone from intercepting it
HTTP vs HTTPS - What's the Difference?
❌ HTTP (Not Secure)
- Data sent as plain text (Plain Text)
- Hackers can intercept (Man-in-the-Middle)
- No server identity verification
- Browser shows "Not Secure"
- Google reduces SEO ranking
✅ HTTPS (Secure)
- All data is encrypted with TLS
- SSL certificate verifies the real server
- Prevents MITM, Eavesdropping
- Browser shows lock icon 🔒
- Google gives higher SEO ranking
📜 Types of SSL Certificates
🟢
DV (Domain Validated)
Free - ~500 THB/year
Verifies only domain ownership, suitable for general websites and blogs
e.g.: Let's Encrypt (Free), Comodo
🟡
OV (Organization Validated)
~2,000-10,000 THB/year
Verifies organization identity, displays company name, suitable for businesses
e.g.: DigiCert, Sectigo
🔵
EV (Extended Validation)
~10,000-50,000 THB/year
Most rigorous verification, shows company name in green, suitable for banks and e-commerce
e.g.: DigiCert EV, GlobalSign
💡 Recommended: Use Let's Encrypt which is 100% free for general websites. Auto-renews every 90 days. Most hosting providers can install it for you.
🤝 How does TLS Handshake work?
1
👋 Client Hello
Browser sends list of supported encryption algorithms to the Server
2
🏅 Server Certificate
Server sends SSL Certificate (identity certificate) back for the browser to verify
3
🔑 Key Exchange
Browser and Server exchange "keys" for asymmetric encryption
4
✅ Verify & Confirm
Both parties confirm handshake is complete and start sending encrypted data
5
🔐 Encrypted Communication
Every piece of data is encrypted (Symmetric Encryption) with the agreed session key
Need HTTPS for your website? 🔒
We install SSL Certificates and configure HTTPS completely
← Back to LearnContact Us