HTTP vs HTTPS
HTTPS is HTTP protected by TLS encryption; HTTP is plaintext.
Updated: 2026-03-05
Definition
HTTP is a plaintext protocol for transferring web content.
HTTPS uses TLS to encrypt traffic, authenticate the server (certificate), and protect integrity.
Key points
- HTTPS = confidentiality + integrity in transit
- Certificates enable server authentication
- Modern best practice: redirect HTTP → HTTPS
Common mistakes
- Believing HTTPS hides domain names completely (SNI/DNS can still reveal metadata).
- Not renewing certificates and causing outages.
Related exams
CompTIA Security+ (SY0-701)
Free Security+ SY0-701 mini test. Continue in the app for offline packs and detailed explanations.
CompTIA Network+ (N10-009)
Free Network+ N10-009 mini test. Continue in the app for offline packs and detailed explanations.
CompTIA A+ (220-1201 / 220-1202)
Free CompTIA A+ mini test. Continue in the app for offline packs and detailed explanations.
Related terms
Want to practice this in exam-style questions?
Use the mini tests on each exam page, then continue in the app for offline packs and detailed explanations.
Go to exams