Working of HTTP
When A sends a message
to B, the message is sent
as a plain text in an
unencrypted manner. This
is acceptable in normal
situations where the
messages exchanged are
not confidential. But
imagine a situation where
A sends a PASSWORD to
B. In this case, the
password is also sent as a
plain text. This has a
serious security problem
because, if an intruder
(hacker) can gain
unauthorised access to
the ongoing
communication
between A and B , he
can see the PASSWORDS
since they remain
unencrypted.