Facebook has enabled https for everyone

Facebook today announced the completion of the transfer of all users of the site to HTTPS, writes The Next Web. Prior to this, since 2011, this protocol, which supports encryption, could have been enabled by users if desired.

According to Facebook, more than a third of users have already used HTTPS. Now, all Facebook traffic and 80% of the mobile version will pass through a secure connection. Mobile version users haven’t been fully translated yet, because there are phones that do not support HTTPS.

Interestingly, since 2011, more and more users turned on HTTPS themselves. Their number reached 35% before Facebook began transferring all users to HTTPS by default.
')


In addition to turning on HTTPS by default, this social network plans to take additional security measures this fall using the following mechanisms: 2048-bit RSA-keys, to which Google now also passes, elliptical cryptography, ECDHE key exchange, certificate-fixing and HTTP Strict TransportSecurity.

Those who are interested in the detailed details of the process of transferring more than a billion users to HTTPS can read the post of security infrastructure engineer Scott Renfro.