Is it secure to send personal data via HTTPS?
Alberto last edited by
On the website of some company, it is possible to send personal data using a form. The browser I'm using says that the connection is secure.
Is it completely secure to send personal data via the form?
Is there any possibility that an attacker can grab the data, or maybe the data could be stored anywhere between my PC and the company's server?
The website is accessed using the HTTPS protocol, so the data should be encrypted, shouldn't it?
Marcee last edited by
No system is 100% secure. But encryption provides a high level of security for data in motion. But it doesn't mean that your data is 100% secured or impossible to break.
Especially you may be trying to access a phishing website. Even though HTTPS is secure, you are sending data to a malicious website.
In addition, the certificate key may be compromised but the certificate is not revoked yet. Or, Forward Secrecy can provide enhanced security of HTTPS but most sites do not enable this feature.
If the site has HTTPS properly configured, you can trust it up to a certain level, because if someone collects data from a middle point, it is impossible to read. If the key is not compromised.