Google announced earlier this week that they are going to use HTTPS as a ranking signal:
We want to go even further. At Google I/O a few months ago, we called for “HTTPS everywhere” on the web.
We’ve also seen more and more webmasters adopting HTTPS (also known as HTTP over TLS, or Transport Layer Security), on their website, which is encouraging.
For these reasons, over the past few months we’ve been running tests taking into account whether sites use secure, encrypted connections as a signal in our search ranking algorithms. We’ve seen positive results, so we’re starting to use HTTPS as a ranking signal. For now it’s only a very lightweight signal — affecting fewer than 1% of global queries, and carrying less weight than other signals such as high-quality content — while we give webmasters time to switch to HTTPS. But over time, we may decide to strengthen it, because we’d like to encourage all website owners to switch from HTTP to HTTPS to keep everyone safe on the web.
As you can see this blog is now using a SSL certificate. While I host media-glass.es on GitHub Pages I am also running Cloudflare, they provide a service called Flexible SSL which is soon going to be free to all users, as part of this announcement they say:
We’re on track to roll out SSL for all CloudFlare customers by mid-October. When we do, the number of sites that support HTTPS on the Internet will more than double. That they’ll also rank a bit higher is pretty cool too.
Which I suppose is one of the reasons why Google are taking this decision, Cloudflare is reported to be handling around 5% of the internets traffic so going on that statistic there is a lot of unsecured data being transmitted.
As someone who is involved in hosting the first thing that hit me about this news is that there is going to be a lot of people who are going to want more IP addresses for SEO purposes. Just like the bad old days when people thought that having a dedicated IP address for each site help with SEO (this hasn’t been the case for at least 12 years).
Luckily a patch adding SNI (Server Name Indication) to OpenSSL was added in 2004. This allows both Apache, NGINX and other web servers to host multiple SSL certificates on a single IP address. Also, cPanel, Plesk and Webmin / Virtualmin all now support SNI.
While SNI is not supported on all browsers (such as ones running on Windows XP) there are work arounds to detect unsupported browsers and redirect as needed.
All of this means you can have a secure, highly ranked website without adding to the IPv4 address exhaustion problem.