Because the protocol encrypts all client-server communications via SSL/TLS authentication, attackers are not able to intercept data, this means consumers can safely and securely enter their own details. SSL/TLS is very suited to HTTP, because it can provide some defense whether or not only one facet on the communication is http://XXX
