" />

Why “Secure iframes” on HTTP Sites Are Bad for Security

A form embedded in an iframe served over https (not terrible but still a bad idea). A form that loads over HTTP and submits over HTTPS (this is terrible).

Read full news article on Dzone