WebProNews » SSL

Google Encrypted Search Means No Info For Individual Queries

Chris Crum — Wed, 19 Oct 2011 14:25:54 +0000

Google announced that it is going to begin encrypting search queries with SSL (Secure Sockets Layer) as the default experience at Google.com when you search logged into your Google account. http://www.google.com will become https://www.google.com.

“This is especially important when you’re using an unsecured Internet connection, such as a WiFi hotspot in an Internet cafe,” says Google product manager Evelyn Kao.

There’s a chance that your Google experience will be slower with SSL because the computer your’e using has to establish a secure connection with Google. This is interesting, considering that Google has put so much effort into speeding things up.

It’s worth noting that you can just go to https://www.google.com when you’re signed out, and still use encrypted search.

Naturally, webmasters and SEOs are contemplating the effects this will have on search engine optimization and analytics.

Sites visited from Google’s organic listings will be able to tell that the traffic is coming from Google, but they won’t be able to receive info about each individual query. They will, however, receive an aggregated list of the top 1,000 search queries that drove traffic to the site for each of the past 30 days in Webmaster Tools.

“This information helps webmasters keep more accurate statistics about their user traffic,” says Kao. “If you choose to click on an ad appearing on our search results page, your browser will continue to send the relevant query over the network to enable advertisers to measure the effectiveness of their campaigns and to improve the ads and offers they present to you.”

“When a signed in user visits your site from an organic Google search, all web analytics services, including Google Analytics, will continue to recognize the visit as Google ‘organic’ search, but will no longer report the query terms that the user searched on to reach your site,” says Amy Chang on the Google Analytics blog. “Keep in mind that the change will affect only a minority of your traffic. You will continue to see aggregate query data with no change, including visits from users who aren’t signed in and visits from Google ‘cpc’.”

“We are still measuring all SEO traffic. You will still be able to see your conversion rates, segmentations, and more,” she adds. “To help you better identify the signed in user organic search visits, we created the token ‘not provided)’ within Organic Search Traffic Keyword reporting. You will continue to see referrals without any change; only the queries for signed in user visits will be affected. Note that ‘cpc’ paid search data is not affected.”

Google is making the encrypted search available on all of its search properties except for Maps.

Ashton Kutcher Twitter Account Hacked, Tweets Promoted in Search

Chris Crum — Thu, 03 Mar 2011 13:05:41 +0000

There’s a lot of big news in celebrity Twitter-use this week. First Charlie Sheen joined Twitter and captured the attention of the much of the web (attention that continues today). Now, Ashton Kutcher, one of Twitter’s biggest celebrity stars has had his Twitter account hacked.

According to Marshall Kirkpatrick at ReadWriteWeb, the person who took over Kutcher’s account from the TED conference.

The most recent tweets from Kutcher’s account say:

Ashton, you’ve been Punk’d. This account is not secure. Dude, where’s my SSL?less than a minute ago via webashton kutcher
aplusk

P.S. This is for those young protesters around the world who deserve not to have their Facebook & Twitter accounts hacked like this. #SSLless than a minute ago via webashton kutcher
aplusk

It’s interesting that Twitter would go so far as to promote a tweet from a hacked account. If you go to the #SSL hashtag (a Twitter search), one of the tweets shows up as a "top tweet". Twitter has to know about it. It’s been picked up by Techmeme.

Kutcher currently has 6,395,786 followers on Twitter. It was only less than two years ago, when he reached his widely publicized first million followers. A little over a month later, Kutcher threatened to delete his Twitter account following the announcement of a TV show that would have normal people competitively stalking celebrities (via a Twitter partnership). Obviously that didn’t happen.

SiteTruth Wants You to Know Who You’re Dealing With

Mike Moran — Mon, 28 Jan 2008 22:29:50 +0000

It’s no wonder that your customers have learned to be a bit wary on the Web.

Spam steals their attention. Scams steal their money. Phishing steals their very identities. Some of your customers are relying on search engines to separate the wheat from the chaff. If your company shows up at the top of the search results, searchers assume that it’s because your company is reputable, but John Nagle thinks Google needs some help.

John is the founder of SiteTruth, which provides a real-world check on any commercial Web site. Search engines do a wonderful job of examining Web factors to deduce the importance of a site. Google’s PageRank examines the number and authority of links to any site—other search engines use similar techniques. But John says that spammers and scammers can sometimes infiltrate the search results, despite Google’s best efforts.

SiteTruth uses traditional off-line investigative techniques to check out the business behind the Web site, and it does it automatically. John demonstrated how SiteTruth works on a keyword such as "tampa hotel" as it scores Google’s regular results, and you can try it for yourself. (SiteTruth can work the same magic on search results from other search engines, too.)

How does it work? SiteTruth examines up to 20 pages on a Web site looking for a postal-style address for the business responsible for the Web site. SiteTruth validates a site’s SSL certificate to ensure that it is a "real" certificate, not just a so-called "domain control" certificate, which anyone can get. It uses the address and the URL to locate the business in the Yellow Pages database and in Open Directory. It also looks for a valid Better Business Bureau seal of approval. You could imagine that the service could one day look up business identities with Dun & Bradstreet or credit reporting agencies or a dozen other company reference files.

By looking at all these factors, SiteTruth makes a determination whether a commercial site is trustworthy, or whether some questions might be in order. "If a site is reasonably legitimate, we’ll come up with a business identity," John confidently asserted.

I checked it out on several well-known Web sites—most came up green or at least yellow. Then I tried it on my own site: red.

"A lot of blogs have this problem," John admitted. My site has no mailing address listed because I am an author, not a business. I saw no reason to list my home address on the Web. Because I don’t have an e-Commerce site, I have no SSL certificate and even though I’ve tried, my site has been on the waiting list for Open Directory for years. And, no business, so no Yellow Pages listing and no BBB seal.

But that’s OK. My site really isn’t a business, so it’s OK that I don’t pass muster as a trusted merchant.

I’d like to see SiteTruth go beyond search results to be used as a browser plug-in or a GreaseMonkey script. That way, I could refer to it whenever I browsed the Web. SiteTruth is still in alpha test, so I’m not sure how John will make money from this idea. Maybe he could sell spam fighters and identity theft services in ads on the detail pages for each company’s ratings. Or sell the service to one of the big search engines. Whatever he decides to do, I think SiteTruth is a good idea whose time has come. Why aren’t we using real world methods to test the legitimacy of Web sites?

So, go ahead. Check out what SiteTruth says about your Web site. If you’re red, maybe you should be doing something about that. You never know when one of the search engines might decide to use some of these factors in its ranking algorithm.

Comments