Normal connections using http send the information from the webserver to your computer in the clear - that is, anyone who wants to eavesdrop on the connection can read your message as it flies by. If all you're doing is looking at a public webpage, that doesn't really matter. Anyone eavesdropping could look at the webpage him/herself anyway.



That's not good enough when you need to enter your password or credit card number. You presumably trust the merchant but you wouldn't want every other person in the world to see your financial details.



Connections using https are secure in that the webserver sets up a protected connection to your computer. The information sent to you (and back) on an https connection can not be easily read by third parties. That's what makes it safe to put in your password.



Https is not a guarantee of security, though. The company could be sharp enough to set up https but not have their webservers properly patched or have a substandard privacy policy. Or it could even be a fraud site. Https only limits the eavesdropping by third parties.

No not really because you have to have security platforms enabled to make a site secure.

No! The s opens a CICS transaction session for you.