HTTP and HTTPS are both application-layer protocols for data transfer, and the main difference between them is security.
HTTP communication is a clear text transmission, and HTTPS is an encrypted transmission. HTTP transmission data is visible on the network and is very vulnerable to eavesdropping and attacks. This is especially the case when it comes to sensitive information, such as landing pages or payment pages.
HTTPS joins the SSL TLS encryption protocol to ensure the security of communication by encrypting the transmitted data. HTTPS's encryption mechanism effectively prevents eavesdropping, tampering, and data leakage.
The HTTPS protocol requires the use of a CA certificate, that is, a certificate authority, a digital certificate authority to apply for a certificate, this kind of certificate is generally charged, and there are few free certificates, and HTTP does not need any certificate.
The ports of the two are also different, port 80 for http and port 443 for https.
Now when you open https in your browser, there will be a green lock icon to inform the user that the connection is secure. Open HTTP in the display is not secure.
With the advancement of network security and the issuance of notices by various platforms to require the use of SSL certificates, HTTP has been gradually replaced by HTTPS.