Summary of smtp.google.com:25 (SMTP) SSL Security Test
Provided "as is" without any warranty of any kind.
This test was made 70 days ago and may be outdated
Refresh Test
Date/Time:Jan 21st, 2026 10:07 GMT+0
Source IP/Port:142.250.31.27:25
Protocol:SMTP
Location:Mount Hope, United States
Your final score:
- A
- B
- C
- F
B
Executive Summary for smtp.google.com
- This server on the tested port supports only hybrid ML-KEM key exchange groups, which are recommended by NIST for the transition period. The server’s certificate chain relies entirely on classical signature algorithms without post-quantum support. Show details.
- 4 certificate chain(s) detected. Show details.
- 4 of 15 supported cipher suites are not compliant with PCI DSS. The server supports PCI DSS compliant protocols (TLSv1.2 and TLSv1.3) as well as non-compliant protocols (TLSv1.0 and TLSv1.1). All supported elliptic curves are compliant with PCI DSS: P-256 and X25519. There are 1 more issue(s) which make the server non-compliant with PCI DSS: potential Marvin Attack. Show details.
- 5 of 15 supported cipher suites are not compliant with NIST and HIPAA. The server supports NIST and HIPAA compliant protocols (TLSv1.2 and TLSv1.3) as well as non-compliant protocols (TLSv1.0 and TLSv1.1). All supported elliptic curves are compliant with NIST and HIPAA: P-256 and X25519. There are 1 more issue(s) which make the server non-compliant with NIST and HIPAA: server does not support OCSP stapling. Show details.
- No issues related to industry best practices were identified. Show details.
