Bing Begins Supporting Separately SSL Search Site; No Referrers Pass

bing-https

Bing now appears to be supporting secure search through the https://www.bing.com address. Previously, trying to use this address generated an error.

If you conduct a search on Bing, while on the HTTPS URL, it will remain HTTPS and keep your searches secure. This is a new feature Bing quietly started supporting over the weekend.

Cyrus Shepard tested to see if the query data would pass from Bing SSL search to Google Analytics. It is known that the standard protocol on the web is to not pass query referrer data from HTTPS to non-HTTPS, but from HTTPs to HTTPs, it should pass.

I am not sure if Bing SSL will pass query data from HTTPS to HTTPS but it definitely should not pass from Bing SSL to a non-HTTPS site.

Our testing does show that when doing a search on Bing Secure Search, and going to a non-secure website, no referrer data passes at all. You don’t know the search term; you don’t even know the search happened on Bing.

Microsoft has not announced any plans for Bing to go SSL yet but this may be a sign that it will come in the near future.

Postscript: A Microsoft spokesperson responded to our request for a comment, below is their response but we do have several follow up questions:

At Bing we are always experimenting to improve the overall search experience and understand that people want choices in how they protect their privacy online. By providing optional access to Bing.com via HTTPS, we are giving everyone the ability to decide how they use Bing while also being thoughtful about how we implement this functionality.

Postscript #2: I asked Bing how will they handle passing referrer and query data to webmasters. They sent me this statement:

At this time we are still evolving our rollout of HTTPS at Bing. As we continue to develop our implementation, we will keep the SEO/SEM community needs top of mind and balance them with consumer privacy and security concerns.

Related Stories

Related Topics: Channel: Analytics | Microsoft: Bing | Top News

Sponsored


About The Author: is Search Engine Land's News Editor and owns RustyBrick, a NY based web consulting firm. He also runs Search Engine Roundtable, a popular search blog on very advanced SEM topics. Barry's personal blog is named Cartoon Barry and he can be followed on Twitter here. For more background information on Barry, see his full bio over here.

Connect with the author via: Email | Twitter | Google+ | LinkedIn



SearchCap:

Get all the top search stories emailed daily!  

Share

Other ways to share:
 

Read before commenting! We welcome constructive comments and allow any that meet our common sense criteria. This means being respectful and polite to others. It means providing helpful information that contributes to a story or discussion. It means leaving links only that substantially add further to a discussion. Comments using foul language, being disrespectful to others or otherwise violating what we believe are common sense standards of discussion will be deleted. Comments may also be removed if they are posted from anonymous accounts. You can read more about our comments policy here.
  • Larry Kim

    regarding the use case of supporting data from HTTPS search to an HTTPS
    web site (where query data is supposedly passed) — this use case
    almost never happens — since most content indexed by search engines
    aren’t served via https

  • http://www.adamdince.com/ Adam Dince

    Scroogled! Our corporate site is indexed as HTTPS so we’ll keep an eye on it and post back on findings. I’m guessing that since Bing copies everything Google does, HTTPS to HTTPS will be encrypted too.

  • RyanMJones

    This is odd. but in my tests, I’m not even seeing an HTTP_REFERER being passed from bing’s SSL – meaning not only is there no keyword, but it would show up as direct traffic.

  • http://jameshalloran.net/ James R. Halloran

    Is anyone honestly surprised? If Bing didn’t do this eventually, Google would certainly point this out in their future marketing ploys (even though, we all know Google is truly in no place to talk about revealing sensitive data).

  • http://wtff.com/ JustConsumer

    No surprise. Pretty obvious move, keeping in mind all latest privacy related concerns.

  • http://www.rustybrick.com/barry Barry Schwartz

    I wouldn’t judge them yet. I am following up to see what is intentional and what is not.

  • RyanMJones

    yeah my gut tells me all they did was enable SSL and nothing else yet. I’m hoping they take the Google approach and put in the intermediary non-ssl page before redirecting to non-ssl domains so that we can at least see it came from Bing.

  • http://www.antivenom-seo.com Brandon Shallenberger

    Good thing the NSA can’t break HTTPS, right guys?

  • ashutosh rajput

    it’s a good change for users………good update in Bing well done……

  • Chris Silver Smith

    I believe Duane Forrester, a Bing Webmaster Tools evangelist, told us at the Dallas-Fort Worth Search Engine Marketing Conference (State of Search) in November that we should expect to see the keyword data disappearing from Bing in the near future. This would appear to be the first step.

Get Our News, Everywhere!

Daily Email:

Follow Search Engine Land on Twitter @sengineland Like Search Engine Land on Facebook Follow Search Engine Land on Google+ Get the Search Engine Land Feed Connect with Search Engine Land on LinkedIn Check out our Tumblr! See us on Pinterest

 
 

Click to watch SMX conference video

Join us at one of our SMX or MarTech events:

United States

Europe

Australia & China

Learn more about: SMX | MarTech


Free Daily Search News Recap!

SearchCap is a once-per-day newsletter update - sign up below and get the news delivered to you!

 


 

Search Engine Land Periodic Table of SEO Success Factors

Get Your Copy
Read The Full SEO Guide