Hi, I have a vb.net application running as intranet on Win Server 2003. So should I use HTTPS instead of HTTP?
What is the difference or why should I if the answer is HTTPS? Is there any code in VB to redirect from HTTP to HTTPS?
Thanking you all in advance for your time and consideration.
You should use HTTPS to ensure reasonable protection from eavesdroppers and man-in-the-middle attacks. HTTPS creates a secure channel over the network, provided that adequate cipher suites are used and that the server certificate is verified and trusted.
An intranet is obviously less exposed than the public internet, but you should still use HTTPS if you are transferring sensitive data (such as passwords) from the server to the browsers.
Assuming you are using IIS to serve your website, you may want to check the following articles for further reading: