I have to explain why getting an ssl cert (https) is important to some non-technical folks. I can't for the life of me simplify this down to a concept. Can someone help.
I have so far:
http is how the web used to work / https is how the web is expected to work in the future
http is vulnerable to being eavesdropped / decoded while in transit
https is not
https is http over a secure protocol (usually (ssl) port 443 or (tls) port 587)
Think of it this way:
you're standing in line at the bank, the teller in front of you asks for your pin.
Do you feel secure saying your pin code for all hear?
Or speaking it to the teller in a some sort of code only you and the teller can understand?
My plan is to use letsencrypt for the cert. I've done this for my own site and it works great.
Mastering the art of technical explanation to non-technical folks is a work in progress for me.