SSL On All Domains By 2014 For All WordPress Sites
Internet giants WordPress have pledged to all users that they will be protected from security threats through SSL protection to increase user security.
The SSl security improvement will be available to all users of WordPress by default and by the end o f 2014 all sites using WordPress will be served only by SSL by the end of the year.
Paul Sieminski from Automattic, the parent company of WordPress wrote in a blog post: “In the face of intrusive surveillance, we believe that everyone in the tech community needs to stand up and do what they can, starting with their own sites and platforms”.
Encrypting the data on websites may not seem to be a priority for many users of WordPress however the announcement of the SSL service came on the anniversary of the first news reports about eh level of NSA surveillance on the internet.
The move to SSL will help to keep all sites using WordPress protected from surveillance and help to keep traffic to these sites private from those who may may be watching the movement of traffic across the internet.
While the announcements from Automattic show that WordPress sites are moving in the right direction to protect users from being monitored by government agencies WordPress is still being cited as a platform that is likely to be monitored.
According to a report by Electronic Frontier Foundation, WordPress still does not support HTTPS strict or STARTTLS to protect users.
This leaves many users if WordPress open to problems as the level of encryption is not very high and could lead to possible preventative problems.
According to a report by The post.com EFF activist Peter Higgins said “Intercepted encrypted data is protected from prying eyes long into the future, even if the website’s secret key is later compromised,”
The monitoring of sites through government agencies has long been a feature however many have been urging sites to make it more difficult for this practice and this move from WordPress shows a step in this direction.
Sieminski said “Just as troubling as the [Snowden] revelations themselves is the fact that since last summer, little if anything has changed.
“Despite a lot of rhetoric, our three branches of government in the United States have not made many concrete steps toward truly protecting citizens from unchecked government surveillance.”
He concluded “If we’ve learned anything over the past year, it’s that encryption, when done correctly, works
If we properly encrypt our sites and devices, we can make mass surveillance much more difficult.”