Click here to Skip to main content
14,163,348 members
Rate this:
 
Please Sign up or sign in to vote.
See more:
I have a form on an unsecured website (HTTP.) When the user clicks Submit, data is POSTed to a secure website (HTTPS.)

Is the data encrypted?

In other words, does encryption depend on the protocol of the current page, the URL to which the data is being submitted, or will it always be encrypted if one of the two sites is using SSL?

I know, I know, the obvious solution would be to secure the first site. Unfortunately, that is not an option at this time.
Posted
Comments
   
Good question, I think. My 5.
--SA

1 solution

Rate this: bad
 
good
Please Sign up or sign in to vote.

Solution 1

No, it's not encrypted when you send the initial POST request. The response from the server to that request will setup the encryption session and everything after that will be encrypted, so long as it stays on HTTP.
   
Comments
Gregory Gadow 2-Apr-11 0:34am
   
That's what I thought would be the case, thanks for the information.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

  Print Answers RSS
Top Experts
Last 24hrsThis month


Advertise | Privacy | Cookies | Terms of Service
Web02 | 2.8.190518.1 | Last Updated 1 Apr 2011
Copyright © CodeProject, 1999-2019
All Rights Reserved.
Layout: fixed | fluid

CodeProject, 503-250 Ferrand Drive Toronto Ontario, M3C 3G8 Canada +1 416-849-8900 x 100