Paul wrote:

The web is going to an all https model.

Even for sites that have nothing to do with securing the data during
transmission (i.e., public information). They still want to prove you
connected where you thought you were going.

SSL/TLS is the protocol used for security purposes. SSL is completely
deprecated (cracked six ways from Sunday). TLS is a continuation of
SSL, which presumably is better than SSL.

Be careful about TLS: verion 1.0 is just SSL 3.0 renamed. TLS 1.0 was
based on SSL 3.0; however, the handshaking was changed sufficiently to
prevent interoperability (TLS 1.0 is not more secure than SSL 3.0 but
your client needs to support whichever the site uses). Your client (and
the site) should use TLS 1.2, or higher.