SSL/TLS, the cryptographic protocol behind https, is no longer a nice-to-have for websites. Site visitors are looking for, and expecting, to see a padlock in the address bar of your site, and the major browsers have announced plans to flag all HTTP sites as non-secure. All signs point to SSL being a need-to-have for anyone operating a website.