Twitter has followed in the footsteps of Facebook by offering an opt-in "always on" HTTPS setting to users of its micro-blogging service.

The Secure Sockets Layer (SSL) encryption protects Twitter users who access the service over unsecured Wi-Fi connections.

"In the future, we hope to make HTTPS the default setting."

However, accessing Twitter from a mobile browser does not force HTTPS even when it is switched on via the settings page.

As a work around, Twitter is telling users to access the service through https://mobile.twitter.com for the time being.

"We are working on a solution that will share the “Always use HTTPS” setting across twitter.com and mobile.twitter.com, so you don’t have to think about which device you’re using when you want to check Twitter," said Penner. "If you use a third-party application, you should check to see if that app offers HTTPS." ®

Related stories

• Google adds default end-to-end encryption to search (19 October 2011)
• Virally spreading scam spreads over Twitter (5 April 2011)
• Facebook traffic mysteriously passes through Chinese ISP (23 March 2011)
• Facebook's position on real names not negotiable for dissidents (8 February 2011)
• Browser add-on updated to slaughter Firesheep (23 November 2010)
• Hotmail always-on crypto breaks Microsoft's own apps (10 November 2010)
• Firefox add-on does 'HTTPS Everywhere' (18 June 2010)
• Google flips default switch for always-on Gmail crypto (13 January 2010)
• Twitter's veracity chewed up by Britney's four-foot vagina (6 January 2009)