Why does not more sites run on https? It validates the site owner with a certificate, and runs on a encrypted connection, and therefore is more secure. So why are not more sites using it?
It's secure but unnecessary for sites not requring personal info or payment transactions, along with the extra cost of acquiring a SSL license. Say your site is simply a forum or a static site (nothing personal info requring going on). Then it's no need to use SSL because normal script configuration will do the job.
Http is the standard for websites that plainly deliver information. There is no need to use https when a site is not collecting sensitive data. Https does not protect a site from being attacked.
Because only a paranoid freak would want to run a site on https when no credit card or important personal/account info would be passed along from you to the server. This would be exactly like some freak not daring to touch a library book because da freak some how thinks da next person to check da book out will get his credit card info...even if he never writes it in da book!!!!! aka...only some paranoid freak would want da whole internet to be on https!