Summary of www.amazon.com:443 (HTTPS) SSL Security Test
Provided "as is" without any warranty of any kind.
This test was made 131 days ago and may be outdated
Refresh Test
Date/Time:Nov 22nd, 2025 07:17 GMT+0
Source IP/Port:23.39.214.146:443
Protocol:HTTPS
Location:Stockholm, Sweden
Your final score:
- A
- B
- C
- F
F
Executive Summary for www.amazon.com
- The server on the tested port is not currently prepared for post-quantum key exchange. The server’s certificate chain relies entirely on classical signature algorithms without post-quantum support. Show details.
- 1 certificate chain(s) detected. Show details.
- 6 of 15 supported cipher suites are not compliant with PCI DSS. The server supports PCI DSS compliant protocols (TLSv1.2 and TLSv1.3) as well as non-compliant protocols (TLSv1.0 and TLSv1.1). All supported elliptic curves are compliant with PCI DSS: P-256 and X25519. There are 2 more issue(s) which make the server non-compliant with PCI DSS: potential Marvin Attack, cve-2021-3449. Show details.
- 7 of 15 supported cipher suites are not compliant with NIST and HIPAA. The server supports NIST and HIPAA compliant protocols (TLSv1.2 and TLSv1.3) as well as non-compliant protocols (TLSv1.0 and TLSv1.1). All supported elliptic curves are compliant with NIST and HIPAA: P-256 and X25519. There are 1 more issue(s) which make the server non-compliant with NIST and HIPAA: server does not support extended master sECret. Show details.
- 1 issue(s) related to industry best practices were identified: . Show details.
