Because the protocol encrypts all customer-server communications by means of SSL/TLS authentication, attackers can't intercept info, meaning buyers can safely enter their own details. SSL/TLS is especially fitted to HTTP, because it can provide some security although just one side from the conversation is authenticated. Here is the circumstance with http://XXX
