HTTPS vs HTTP

#1
Hello everyone,

I just want to to engage the community here to know about opinions/facts about adopting HTTPS for most of the websites versus non-secure HTTP. I know it makes sense to have HTTPS on for things that involve sensitive or private data (personal information, financial information etc). But what do you guys think about adopting it site-wide even for areas that are like information only. Or for customers just browsing products on an e-commerce site and have not proceeded to order anything.

With HTTP/2 I've found HTTPS to be faster.

and recent encouragement:

https://blog.mozilla.org/security/2015/04/30/deprecating-non-secure-http/
https://www.httpvshttps.com/
https://letsencrypt.org/2014/11/18/announcing-lets-encrypt.html
http://googlewebmastercentral.blogspot.ca/2014/08/https-as-ranking-signal.html

I just want to know what my fellows here at Litespeed (staff and users alike) think and feel about this.

Thank you for your time! :)
 

mistwang

LiteSpeed Staff
#2
It should be fine for regular web sites, wordpress, forum etc.
For media content and serving large static file, HTTP is still preferred. HTTPS (HTTP/2) will causes high CPU load for the server, as kernel level optimization wont work, like zero-copy sendfile() call cannot be used.

Anyway, LiteSpeed Enterprise will give you the best performance when HTTP/2 is used.
 
#3
Thank you mistwang. I was wondering about the large files myself. but when you say "large static file" how large are we talking. websites with normal browsing experience that have images up to 1-2mb, static files, text should be fine? in comparison to 'HTTP with compression' how much more is the overhead for HTTP/2 (ssl).
 
Top