Summary of rpt.toptip.cc:443 (HTTPS) SSL Security Test
Provided "as is" without any warranty of any kind.
This test was made 475 days ago and may be outdated
Refresh Test
Date/Time:Jan 18th, 2025 09:13 GMT+0
Source IP/Port:148.153.84.115:443
Protocol:HTTPS
Location:Frankfurt am Main, Germany
Your final score:
- A
- B
- C
- F
F
Executive Summary for rpt.toptip.cc
- 1 SSL/TLS end-entity certificate(s) detected: the first certificate is an untrusted RSA 4096 bits certificate with unknown issuer valid until October 19, 2072. 1 certificate chain(s) detected. Show details.
- All 14 supported cipher suite(s) are compliant with PCI DSS. The server supports PCI DSS compliant protocols (TLSv1.1 and TLSv1.2) as well as non-compliant protocols (TLSv1.0). All supported elliptic curves are compliant with PCI DSS: P-256, P-521, brainpoolP512r1, brainpoolP384r1, P-384, brainpoolP256r1, secp256k1, B-571, K-571, K-409, B-409, K-283 and B-283. There are 1 more issue(s) which make the server non-compliant with PCI DSS: certificates are untrusted. Show details.
- 2 of 14 supported cipher suites are not compliant with NIST and HIPAA. The server supports NIST and HIPAA compliant protocols (TLSv1.1 and TLSv1.2) as well as non-compliant protocols (TLSv1.0). All supported elliptic curves are compliant with NIST and HIPAA: P-256, P-521, brainpoolP512r1, brainpoolP384r1, P-384, brainpoolP256r1, secp256k1, B-571, K-571, K-409, B-409, K-283 and B-283. There are 4 more issue(s) which make the server non-compliant with NIST and HIPAA: certificates are self-signed, certificate does not provide OCSP revocation information, server does not support TLS 1.3, server does not support extended master sECret. Show details.
- 3 issue(s) related to industry best practices were identified: server does not support TLS 1.3, HTTP site does not redirect to the HTTPS version, server does not provide HSTS. Show details.
