{"id":955,"date":"2018-04-13T00:04:52","date_gmt":"2018-04-13T00:04:52","guid":{"rendered":"https:\/\/porkbun.com\/blog\/?p=955"},"modified":"2018-04-13T00:04:52","modified_gmt":"2018-04-13T00:04:52","slug":"app-secure-by-design","status":"publish","type":"post","link":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/","title":{"rendered":".app: secure by design"},"content":{"rendered":"

The last days of unencrypted HTTP<\/h3>\n

It\u2019s accepted wisdom that every website should be served over a secure HTTPS (SSL) connection. HTTPS encrypts browser traffic, protecting your customer\u2019s passwords, credit card numbers, and other personal information from eavesdroppers and hackers. In recent years, the price of SSL certificates has plummeted, and the advent of free \u201cLet\u2019s Encrypt\u201d certificates means you no longer need to spend a fortune \u2014 or anything at all \u2014 to assure your site\u2019s visitors that their data is safe.<\/p>\n

All of this will come as no surprise to most Porkbun customers, who by virtue of registering their domains at the Bun find themselves in the vanguard of the push towards a totally-secure web. Porkbun was the first registrar to provide free SSL certificates to every customer on every domain without any renewal fee or upcharge.<\/p>\n

Unencrypted HTTP isn\u2019t just unfashionable, it\u2019s about to go the way of the Dodo. As of April 2018, over 70% of all website traffic is now served over HTTPS<\/a>, up almost 10% from a year ago. Google recently announced that starting in July of 2018, any site not served over HTTPS will be marked with a large grey \u201cnot secure\u201d icon in Chrome\u2019s URL bar \u2014 not exactly instilling of consumer confidence.<\/p>\n

 <\/p>\n

\"\"
How insecure sites will appear in Chrome after July 2018. Source: Chromium Blog<\/em><\/figcaption><\/figure>\n

 <\/p>\n

.app and HTTPS<\/h3>\n

With the release of Google Registry\u2019s new .app domain extension, Google has taken their commitment to a secure web a step further by enforcing mandatory HTTPS across all .app domains. That means if you register a .app domain, you can still host a site over unencrypted HTTP \u2014 but no modern browser will load it.<\/p>\n

How did Google achieve this feat? Well, it just so happens that Google maintains a special list known as the HSTS Preload List<\/a>. Anyone can submit their site to the list, which tells every modern browser: \u201cinsecure HTTP is disabled for this domain.\u201d What makes .app unique is the entire .app zone has already been added to the HSTS Preload List, no exceptions allowed<\/a>.<\/p>\n

Thus, if you try to load a .app site over unencrypted HTTP, your browser will refuse, instead displaying an error message that can\u2019t be bypassed. This protects all .app domains from a wide swath of so-called \u201cman-in-the-middle\u201d attacks wherein an eavesdropper intercepts traffic for nefarious purposes. It also improves site loading time as the browser won\u2019t even try to connect to the unencrypted channel first, skipping directly to HTTPS.<\/p>\n

.app and Porkbun<\/h3>\n

.App\u2019s HTTPS requirement can seem scary, but compliance is easy at Porkbun. If you\u2019re hosting your .app site via our site builder or shared hosting package, HTTPS is automatic; you don\u2019t have to do a thing! Want to host your site elsewhere? You can still use your free Let\u2019s Encrypt certificate with a 3rd-party hosting company. For more info, check out our article How to use your free SSL certificate<\/a>. Already purchased a traditional certificate? That works, too.<\/p>\n

Still have questions about .app, Let\u2019s Encrypt, or HSTS Preload? Email us at support@porkbun.com<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

The last days of unencrypted HTTP It\u2019s accepted wisdom that every website should be served over a secure HTTPS (SSL) connection. HTTPS encrypts browser traffic, protecting your customer\u2019s passwords, credit card numbers, and other personal information from eavesdroppers and hackers. In recent years, the price of SSL certificates has plummeted, and the advent of free […]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"yoast_head":"\n.app: secure by design - Porkbun.com<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\".app: secure by design - Porkbun.com\" \/>\n<meta property=\"og:description\" content=\"The last days of unencrypted HTTP It\u2019s accepted wisdom that every website should be served over a secure HTTPS (SSL) connection. HTTPS encrypts browser traffic, protecting your customer\u2019s passwords, credit card numbers, and other personal information from eavesdroppers and hackers. In recent years, the price of SSL certificates has plummeted, and the advent of free […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\" \/>\n<meta property=\"og:site_name\" content=\"Porkbun.com\" \/>\n<meta property=\"article:published_time\" content=\"2018-04-13T00:04:52+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png\" \/>\n<meta name=\"author\" content=\"samporkbun\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"samporkbun\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\"},\"author\":{\"name\":\"samporkbun\",\"@id\":\"https:\/\/porkbun.com\/blog\/#\/schema\/person\/e6f38a98559324d5b62fccb9e13873e0\"},\"headline\":\".app: secure by design\",\"datePublished\":\"2018-04-13T00:04:52+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\"},\"wordCount\":531,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/porkbun.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\",\"url\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\",\"name\":\".app: secure by design - Porkbun.com\",\"isPartOf\":{\"@id\":\"https:\/\/porkbun.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png\",\"datePublished\":\"2018-04-13T00:04:52+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage\",\"url\":\"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png\",\"contentUrl\":\"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/porkbun.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\".app: secure by design\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/porkbun.com\/blog\/#website\",\"url\":\"https:\/\/porkbun.com\/blog\/\",\"name\":\"Porkbun.com\",\"description\":\"The Porkbun Blog\",\"publisher\":{\"@id\":\"https:\/\/porkbun.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/porkbun.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/porkbun.com\/blog\/#organization\",\"name\":\"Porkbun.com\",\"url\":\"https:\/\/porkbun.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/porkbun.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/porkbun.com\/blog\/wp-content\/uploads\/2019\/02\/porkbun-logo.png\",\"contentUrl\":\"https:\/\/porkbun.com\/blog\/wp-content\/uploads\/2019\/02\/porkbun-logo.png\",\"width\":404,\"height\":404,\"caption\":\"Porkbun.com\"},\"image\":{\"@id\":\"https:\/\/porkbun.com\/blog\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/porkbun.com\/blog\/#\/schema\/person\/e6f38a98559324d5b62fccb9e13873e0\",\"name\":\"samporkbun\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/porkbun.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g\",\"caption\":\"samporkbun\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":".app: secure by design - Porkbun.com","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/","og_locale":"en_US","og_type":"article","og_title":".app: secure by design - Porkbun.com","og_description":"The last days of unencrypted HTTP It\u2019s accepted wisdom that every website should be served over a secure HTTPS (SSL) connection. HTTPS encrypts browser traffic, protecting your customer\u2019s passwords, credit card numbers, and other personal information from eavesdroppers and hackers. In recent years, the price of SSL certificates has plummeted, and the advent of free […]","og_url":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/","og_site_name":"Porkbun.com","article_published_time":"2018-04-13T00:04:52+00:00","og_image":[{"url":"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png","type":"","width":"","height":""}],"author":"samporkbun","twitter_card":"summary_large_image","twitter_misc":{"Written by":"samporkbun","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#article","isPartOf":{"@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/"},"author":{"name":"samporkbun","@id":"https:\/\/porkbun.com\/blog\/#\/schema\/person\/e6f38a98559324d5b62fccb9e13873e0"},"headline":".app: secure by design","datePublished":"2018-04-13T00:04:52+00:00","mainEntityOfPage":{"@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/"},"wordCount":531,"commentCount":0,"publisher":{"@id":"https:\/\/porkbun.com\/blog\/#organization"},"image":{"@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage"},"thumbnailUrl":"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/porkbun.com\/blog\/app-secure-by-design\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/","url":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/","name":".app: secure by design - Porkbun.com","isPartOf":{"@id":"https:\/\/porkbun.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage"},"image":{"@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage"},"thumbnailUrl":"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png","datePublished":"2018-04-13T00:04:52+00:00","breadcrumb":{"@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/porkbun.com\/blog\/app-secure-by-design\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#primaryimage","url":"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png","contentUrl":"https:\/\/betamax.porkbun.com\/blog\/wp-content\/uploads\/2018\/04\/image1-1.png"},{"@type":"BreadcrumbList","@id":"https:\/\/porkbun.com\/blog\/app-secure-by-design\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/porkbun.com\/blog\/"},{"@type":"ListItem","position":2,"name":".app: secure by design"}]},{"@type":"WebSite","@id":"https:\/\/porkbun.com\/blog\/#website","url":"https:\/\/porkbun.com\/blog\/","name":"Porkbun.com","description":"The Porkbun Blog","publisher":{"@id":"https:\/\/porkbun.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/porkbun.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/porkbun.com\/blog\/#organization","name":"Porkbun.com","url":"https:\/\/porkbun.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/porkbun.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/porkbun.com\/blog\/wp-content\/uploads\/2019\/02\/porkbun-logo.png","contentUrl":"https:\/\/porkbun.com\/blog\/wp-content\/uploads\/2019\/02\/porkbun-logo.png","width":404,"height":404,"caption":"Porkbun.com"},"image":{"@id":"https:\/\/porkbun.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/porkbun.com\/blog\/#\/schema\/person\/e6f38a98559324d5b62fccb9e13873e0","name":"samporkbun","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/porkbun.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=mm&r=g","caption":"samporkbun"}}]}},"_links":{"self":[{"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/posts\/955"}],"collection":[{"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/comments?post=955"}],"version-history":[{"count":0,"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/posts\/955\/revisions"}],"wp:attachment":[{"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/media?parent=955"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/categories?post=955"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/porkbun.com\/blog\/wp-json\/wp\/v2\/tags?post=955"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}