The Chrome 69 update brought with it a raft of changes. Most were positive and well received. There were one or two eye-raisers, though. For instance, Google has unilaterally decided to remove certain important features of the familiar URL, in line with their overall reduction in clutter around the browser address bar.
Google claims the change only removes “trivial” characters that most people don’t pay attention to. But does removing the supposedly trivial characters actually increase your chance of landing on the wrong website? Let’s take a look.
Google Chrome 69 Removes “WWW” From URLsGoogle Chrome 69 rolled out in September 2018 with a few interesting changes. Two things have grabbed the headlines:
Chrome 69 does away with the green “https://” protocol notifier, replacing it with a simple green padlock. The green padlock represents a secure, HTTPS site and is meant to make it easier to check if your data is secure quickly. Also, as part of the same update, Chrome 69 drops URL subdomain information. In many cases, this means removing “www” from the URL.
The first change makes sense, at least in some ways. Combining the “Secure” tag, the existing padlock, and the “https://” protocol notifier into a single padlock does make it easier for almost everyone to spot if the site is secure or not. And when you visit a site that isn’t secured with HTTPS, the “Not secure” notification still displays. (The “Not secure” notifier will turn red in Chrome 70.)
However, the flip-side is that HTTPS doesn’t automatically make you safe 7 Myths About HTTPS and SSL Certificates You Shouldn't Believe 7 Myths About HTTPS and SSL Certificates You Shouldn't Believe SSL certificates allow websites to encrypt and secure traffic, but there are many misunderstandings about how it works. Let's debunk them. Read More (albeit, you are safer ), and “non-secure” sites will enter the internet-users psyche as dangerous places ( again, this isn’t completely true 7 Reasons Your Site Needs an SSL Certificate 7 Reasons Your Site Needs an SSL Certificate It doesn't matter if you're developing a modest blog or a full e-commerce site: you need an SSL certificate. Here are some practical reasons why. Read More ).
The second change―to remove subdomain information from URLs―doesn’t make sense. Removing “www” from the URL is at best irksome and silly, and at worst could cause unsuspecting users to land on completely different sites. Worse still, Google removed the subdomains without mentioning it beforehand.
What Does Removing “WWW” From URLs Mean?Subdomains are really important to how the internet functions.
On a basic level, “makeuseof.com” and “www.makeuseof.com” are different. They are different URLs, that could lead to different sites and even have separate DNS records.
The change also affects “m.” subdomains. For instance, m.facebook.com becomes just regular facebook.com but still shows the mobile site. The system works for Facebook. Other sites, not so much. Been to m.tumblr.com recently? Not likely, because it isn’t the Tumblr mobile site, despite how the URL looks. Rather, it is someone’s personal Tumblr domain How to Use Tumblr: 10 Useful Tumblr Tips for Beginners How to Use Tumblr: 10 Useful Tumblr Tips for Beginners When you sign up for Tumblr, it can be a bit overwhelming. Where do you start? What tricks are the pros using? We’ll answer all those questions in this article. Read More , named “m.”
“People have a really hard time understanding URLs,” Chrome engineering manager Adrienne Porter FelttoldWired . “They’re hard to read, it’s hard to know which part of them is supposed to be trusted, and in general I don’t think URLs are working as a good way to convey site identity. So we want to move toward a place where web identity is understandable by everyone: They know who they’re talking to when they’re using a website, and they can reason about whether they can trust them. But this will mean big changes in how and when Chrome displays URLs. We want to challenge how URLs should be displayed and question it as we’re figuring out the right way to convey identity.”
Why Shouldn’t Google Remove Subdomains?The unexpected changes have met backlash across the internet. And for a range of reasons, too. Here are some of the main talking points.
1. Google Is Trying to Destroy the URLIs Google using Chrome as an experimental URL-killing battleground? Some commenters think so. URLs are an important part of most internet users browsing experience removing the security that comes with a clear URL will expose more users to phishing attacks.
Despite what Adrienne Porter Felt said in the Wired interview, the “https://www.” aspect of a URL isn’t the difficult bit to read, it is just regular internet nomenclature that requires basic education. The difficult to understand bits of a URL come from the pathnames that follow the initial domain name, including cryptic file names and extensions.
Without being demeaning, the internet is a vital part of life and is now 25 year’s old. Learning to read and understand a domain name is important.
2. Google Wants AMP to Replace All URLsCritics of Google’s AMP Project think that the move to obliterate subdomains from URLs, and therefore any Chrome address bar on any device, is a ploy to further the mobile optimizer. Google AMP essentially caches web pages and serves them as optimized mobile sites.
While many sites now have functional mobile sites, the AMP service basically forces publishers to let Google take control of their page views. Why would they do this? Otherwise, the publisher’s articles are extremely unlikely to appear in the Top Stories section of Google mobile search. Oh, and in the process, Google takes control of the monetization process, too. The user experience is great, mind, and it does cut down on malvertising and rogue advertising networks.
Google AMP critics posture that by hiding the “amp.” subdomain from users, Google will eventually funnel all web content through the s