HTTP is not a secure protocol, in the same way that FTP is not a secure protocol - all data is transmitted unencrypted,
including usernames and passwords. The HTTPS (HyperText Transfer Protocol Secure) protocol was introduced to provide a
way to securely send data via HTTP. It is identical in syntax, but uses SSL/TLS to encrypt the data being sent
to and from the server.
HTTPS is especially useful for encrypting usernames and passwords that are being sent to an HTTP server, as well
as sensitive individual and corporate data such as credit cards or other payment transactions.