Seven ways to keep your website safe
Following on from our recent webinar on the theme of website optimisation we have developed a series of three blog posts that discuss website optimisation. These are high level blogs and not intended to be all encompassing but rather have been designed to kick start thoughts on concepts such as analytics, SEO and some tips to keep your website safe..
Seven ways to keep your website safe
Broken links, badly formatted code, page errors and expired SSL certificates can hurt the quality and ranking of your site. Running a website isn’t simply a case of setting it up and forgetting about it. It’s not quite build it and they will come, you need to maintain it, keep it safe and secure it in order to maximize traffic, sign-ups and conversions. Here are seven top tips for a safe and successful website:
- Regular website malware scanning. All Symantec SSL certificates come with Website Malware Scanning that checks your site daily and warns you of possible infections, which if undetected can lead to search engine warnings, black listing and damage to your customers’ computers. You should also monitor for vulnerabilities that cybercriminals could use as an unlocked back door to your site.
- Up-to-date SSL certificates. These show visitors and customers that your site is secure by displaying ‘https’ in their address bar. Expired certificates trigger credibility-damaging certificate warnings in web browsers. If you manage multiple sites and multiple SSL certificates, consider keeping track of them using a management system like Symantec Managed PKI for SSL.
- Extended Validation (EV) SSL certificates. Extended Validation SSL shows up differently in the new generation of browsers and has been designed to make it easy for people to definitively know who they are doing business with. And so your customers can know that you are you and not somebody pretending to be you in order to steal their credit card details or personal information. It proves the Certificate Authority you purchased your SSL certificates from has been independently verified, as Symantec has, and that your company has been through a rigorous vetting process.
- Always-on SSL. Always-on SSL is a security measure that provides login-to-logout protection for website visitors. It doesn’t replace your existing SSL certificates, but instead extends protection over a user’s entire session on a website. Some of the world’s largest and most trusted websites have embraced Always On SSL to provide persistent protection and a secure experience for their online users.
- Security explanation page. By talking about security you let your customers know that you take it seriously. Answer the questions of the safety conscious before they ask them and educate those who are less well informed about what the security signs on your site mean for them.
- Up-to-date server software. If your server software is outdated then it’s not secure and neither is your website. Be sure to install all patches and upgrades for your server software, including content management software and database, as soon as they become available, just as you would on your own PC.
- Trust marks. Trust marks displayed in search results, like the Norton Seal can increase traffic to your site by inspiring confidence in its security. In addition, trust marks on your website encourage visitors to become customers. For example, 94% of respondents* to an online study said they are more likely to continue an online purchase when they see The Norton™ Secured Seal. (Symantec Online Consumer Study, February 2011). Read http://baymard.com/blog/site-seal-trust for a third party perspective on the value that trust marks can have on your site.
To accompany this post we’ve developed an eBook that can be downloaded here