Definitions

HTTP: Hyper Text Transfer Protocol. It is the way that a web server communicates information to your browser.

HTTPS: Secure Hyper Text Transfer Protocol. It uses a strong encryption system called SSL (Secure Sockets Layer) to create a special encoded connection between your computer and the web server that no one can see inside. HTTPS preserves confidentiality.

Man-in-the-Middle attack (MITM): Where a malicious individual intercepts your communications and pretends to be your intended destination. This individual will see all your traffic before handing it off to your intended target. MITM spoofs an authentic website in order to violate your confidentiality.

SSL Certificate: A special type of file that a computer like a web server can use to identify itself uniquely. Certificates can be issued by “Certificate Authorities” which are a strong proof that a web server is in fact who it says it is. “Self-signed certificate” are those certificates which are verified by the entity who owns the web address. SSL certificates establish authenticity.

Certificate Error: A certificate error is when your browser detects some sort of problem in the certificate identifying a web site; this can indicate that the server is not who it says it is. Certificate errors indicate a website is inauthentic.

“SSL Pinning”: A term for certificates your browser trusts in advance without needing to ask a Certificate Authority for its validity.