Google’s official blog says that users will get a set of clear and bold warnings when they try to type in a password or any personal information on an insecure HTTP site.
It is very difficult for users to differentiate between a secure and an insecure site. Even HHTPS websites that look secure can house insecure HTTP forms for passwords and personal data. And due to this Google is looking to fix this issue with the help of Google Chrome 86.
If the user is using Chrome, and he gets to see the little closed lock icon right next to the URL that simply means he is browsing using HTTPS. The reason is that the user’s traffic is being encrypted so that any third party cannot spy on the information that the users are sending.
Primarily, a user will get a couple of huge, bold warnings, according to Google’s official blog post. And if users after that still try to submit their information, they’ll get a second – “are you sure?”-style warning. This Google has done to enhance security for its users.
Google is also disabling the autofill feature on these so-called blended forms, so the reality that the password supervisors and auto-complete keyboards do not instantly drop in the text should be a 3rd type of warning.
Google has previously also tried to alert users about this issue by even removing the lock icon from the URL whenever it detects an HTTP form. However, the company says, users found this mover unclear and did not effectively explain the risks associated with submitting data to insecure forms. Thus this move did not have much impact on the users.
Chrome also added DNS-over-HTTPS in Chrome 83. Come October, Google is all set to make things more secure for users with the help of Chrome 86.