Google in the URL bar
Google’s AMP technology broke the URL bar, now they want to make it right. Photo by Carles Deluvio

The hoops you'll have to jump through to use your domain with AMP

This is part of a series of articles on the repercussions of AMP adoption. AMP is being given special attention due to its potential to centralize control of the way the web is built. Read more: Google AMP lowered our page speed, and there’s no choice but to use it

An infuriatingly hacky situation exists on the web today, and people who publish content on the web have been powerless to remedy it: if your site is visited via Google Search and you’ve implemented Google’s AMP framework (which, if you’re a publisher, you essentially have to), your site appears to be coming from google.com - that’s what the URL bar says, and the server your site is sent from belongs to Google. The reader won’t even come into contact with your own server.

This might seem like a minor issue, but a domain name is a crucial facet of a business’ brand. Millions are spent on domain names. Users, including billions of non-technical users, rely on them to identify where information is coming from.

With AMP, URLs don’t mean what they used to, and sharing a link to a page is more confusing than it ever needed to be. AMP breaks conventions that users have adapted to since the dawn of the web itself.

On top of this hack, another is piled on in an attempt to partially remedy it: the ugly grey bar showing the content owner’s domain name. It’s a tacky, inelegant blemish that looks like it’s part of the page, not part of the browser UI. It makes all AMP pages look the same, like they’re a white-label content provider for google.com.

Google’s solution

Publishers have had to live with this situation for three years, since AMPs introduction, but this year, Google has come up with a solution, called Signed Exchanges. Let’s take a look at what’s required.

First you’ll need a new TLS certificate, called a SXG certificate, a special one which supports an extension called CanSignHttpExchanges. There’s only one company in the world that offers them so far, and it’ll cost you $198 a year. From what we can tell, you’ll still need your regular certificate in addition to this new SXG one, so you’ve now got a new expense every year.

Next you’ll need to run a new web server called AMP Packager, or amppkg. It works by creating “Signed HTTP Exchanges (SXGs)”, which are AMP documents that have been transformed and cryptographically signed. AMP Packager is a HTTP server that “sits behind a frontend server”, so you’ll need to run it in addition to your existing server.

To deploy amppkg in production, both it and your server have to be configured manually. You’ll need to:

  • Manually configure your server to conditionally proxy requests to amppkg by URL and header
  • Change the headers your server returns for all URLs pointing to an AMP page
  • Automate the renewal of the SXG certificate and restart amppkg every 90 days or sooner
  • Keep amppkg updated to a version specified by Googlebot in the headers it sends. Your AMP-on-your-own-domain will stop working (somehow) if you don’t
  • On top of that, the system introduces new security concerns that publishers will need to handle to protect users and their privacy

So that’s a new HTTP server, new HTTP headers, new TLS certificate, and new daemons.

All of this so you can serve your users from your own domain like it’s 1999.

By the way, signed exchanges are only supported on Google Search (but not yet on the all-important carousel at the top of the page), and only supported on Chrome. Other browsers may follow suit, but both Mozilla and Apple are skeptical. Mozilla even considers the Signed HTTP Exchanges standard “harmful”.

It’s likely that tooling will improve in the future. But all these new moving parts will still need to be part of the mix of technologies serving your content.

That said, if you happen to be a Cloudflare customer, there is a simpler option.

Cloudflare’s “AMP Real URL”

Cloudflare announced recently that if you’re a customer, they can do a lot of this work for you - taking your AMP pages, signing them, and passing them on to Google’s AMP cache.

Slightly unnerving is the fact that in the same blog post, Cloudflare strongly implies that this service is something they could easily charge for, saying it’s free “not because our customers haven’t been excited or willing to pay for it” - that their motivation is, yes, to build an open internet, but also “we are hoping that this will motivate potential customers who value AMP to choose Cloudflare.”

So by requiring publishers to invest in a complex new technology just to avoid punishment on Google’s search results, Cloudflare get’s a captive audience of potential new customers.

Cloudflare’s solution is complicated and required significant development effort, so it’s not inconceivable that they’ll charge for the service in the future. Other CDNs may follow suit in providing a similar service, so hopefully publishers won’t be locked into using Cloudflare. But even if there will be choice, it means that putting your content on the web - without being penalized on Google - requires a new middle man, unless you’re willing to roll your own solution.

Publishers are being pressured by Google to do all this - on their own dime - just to access the most lucrative position on Google’s results page. Were it not for Google’s monopoly, getting publishers to play ball would have been much more difficult.

unlike kinds newsletter
Get the unlike kinds newsletter
An infrequent summary of top articles in your inbox
Preview the newsletter

 

More about Google

Undeserving website can pay to climb Google's rankings and reach the lucrative top positions
Google Search is being routinely gamed by fake blogs and has been for years
For years, fraudsters have been getting away with tricking Google into pushing them higher up on the search result pages than they deserve to be. We’ll look at a PBN example, and explore if search engines can do anything about them.
Android updates are being rolled out slower every year
Android updates are getting slower and slower, despite Google's best efforts
For a decade, Google has tried to speed up updates to Android phones. For a decade, they’ve failed. Even worse, updates are getting slower every year.
Google can rank a site based on terms that don't appear on the page
Google may rank sites for queries that don't appear on the page at all
An undocumented ranking method can result in sites appearing in Google search results for queries that don’t appear on the page.
Google's power over the web allows them unprecedented control over the media
Google AMP lowered our page speed, and there's no choice but to use it
Google’s AMP project is supposed to speed up your web site. But what do you do when it makes your site slower? Do publishers have a real choice about using it?
Google helps us find information easily but at what cost?
How Google is getting between readers and publishers
Google’s harvesting of information from the web is fundamentally changing what publishers produce, but are publishers bearing an unfair burden, and is the web better this way?

More about AMP

Google's power over the web allows them unprecedented control over the media
Google AMP lowered our page speed, and there's no choice but to use it
Google’s AMP project is supposed to speed up your web site. But what do you do when it makes your site slower? Do publishers have a real choice about using it?

More in Tech

Twitter and Reddit are similar in lots of ways, but only Reddit has effective tools to dissuade the vitriol
Trolls and Consequences: What Twitter needs to learn from Reddit
Twitter and Reddit are both huge, anonymous networks. But only Twitter has earned a reputation for abuse like rape and death threats. How does Reddit keep the trolls behaving?
An F/A-18F Super Hornet flies over USS Gerald R. Ford via [navy.mil](https://www.navy.mil/submit/display.asp?story_id=101711)
The futuristic war tech in America's newest aircraft carriers
Entering its final testing phase, the USS Gerald R. Ford carrier is bristling with bleeding edge technology that will set standards for decades to come.
The relative freedom of Android means users can do more with their phones than their iPhone-using friends. *Photo by Tom Sodoge*
Shady Netflix, blocking ads, and other mischief in the Android App Underground
There’s a whole hidden world of apps that Google doesn’t want you using on your Android phone. Luckily it’s easy to get them, and you can do some pretty incredible things with them.
The device is triggered when the car's involved in a serious crash, but can also be triggered manually
In Europe, cars automatically call for help if they crash
New cars sold in the EU are required to include a device that can record audio and track the car’s location. It’ll save lives, but will it impact privacy?
Bill Gates verifying his identity for Reddit. We're not sure what's happening either. Via [Twitter](https://twitter.com/billgates/status/836260338366459904).
Bill Gates casually chats with people on Reddit when he isn't saving the world
It’s not every day you chat to a billionaire, but on Reddit you might just throw some words at Bill Gates without even realizing.