The migration from HTTP to HTTPS is more important than ever. While HTTPS has been around for 20 years, the industry is now shifting more quickly towards it for a more secure web environment. Chrome is pushing this further and striving to make a fully secure web a reality soon. Given Chrome was dubbed the most-used-browser, beating Internet Explorer for the first time last year. This shift is impactful, especially for video providers.
Starting this year, Google is marking HTTP pages that collect passwords or credit cards as non-secure on Chrome browsers. That means any subscription-based service, like some news sites, will need to update to HTTPS in order for their Chrome-using subscribers to not be affected. For sites that aren’t migrated, users will get a warning message that the site is unsecure, damaging user experience and, potentially, user trust.
Google is further migrating browser features to be available only over secure connections. Starting on April 1st, 2017, Google will block encrypted streams originating from insecure origins (such as websites connecting over HTTP) on all Chrome v58 browsers.
So what does this mean to you and your video business?
Playback of encrypted content (specifically, DASH with Widevine Modular) on HTML5 players will be blocked on any site running over HTTP on a Chrome browser. Note that other types of encrypted streams, including eHLS, are not affected by this change in Chrome. To avoid interruptions when streaming DASH with Widevine Modular DRM, you should secure your websites immediately by upgrading to HTTPS. If you are an Ooyala customer, make sure to update to the latest Ooyala Player version.
If you have questions on how this change affects your video streaming, please don’t hesitate to contact your Ooyala Customer Success Manager or submit a ticket here.
The Ooyala Player is an HTML5 player that is fast, modular, fully customizable and integrates with all major ad and analytics platforms.