Re: Knee jerk
Obviously it would be best if legacy unencrypted HTTP ceased to exist.
Extended validation (fat green bar) is the new secure. Over time browsers will downplay (visually) mere domain only validation, which will become the new normal. Unencrypted is being depreciated out as we speak, for example not granting access to new web APIs from unsecured origins.
By carrot and stick, the unencrypted web is on the way out.
Biting the hand that feeds IT
