Open
Cached
·
just now
73/100
SECURITY SCORE
Certificate Information
Subject
CN=bse.wisc.edu
Issuer
C=US, O=Amazon, CN=Amazon RSA 2048 M03
Valid From
September 09, 2025
Valid Until
October 08, 2026
326 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5B:CB:2C:A0:65:E9:20:F5:B9:D3:0B:BD:D1:19:E7:BD:22:82:41:BD:42:79:07:D0:51:58:F0:76:8B:77:B5:65
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
97 domains
broaderimpacts.wisc.edu
bse.wisc.edu
bsr.wisc.edu
btp.wisc.edu
bursar.wisc.edu
businessservices.wisc.edu
caarn.wisc.edu
campus-it-service-catalog.wisc.edu
campussupervisorsnetwork.wisc.edu
cancerbiology.wisc.edu
cancerclearandsimple.wisc.edu
canes.wisc.edu
careers.wisc.edu
ccas.wisc.edu
cdha.wisc.edu
celticstudies.wisc.edu
cems.wisc.edu
ceo.wisc.edu
chicla.wisc.edu
childdevelopmentlab.wisc.edu
china.wisc.edu
chpdc.wisc.edu
cipe.wisc.edu
cjs.wisc.edu
clear.wisc.edu
clfs.wisc.edu
cmp.wisc.edu
compliance.wisc.edu
connecthealth.wisc.edu
constitution.wisc.edu
cornbreeding.wisc.edu
creeca.wisc.edu
creme.wisc.edu
criminaljustice.wisc.edu
crowe.wisc.edu
crystallographycore.wisc.edu
csd.wisc.edu
culturesinconflict.wisc.edu
envirosci.wisc.edu
erp.wisc.edu
wsel.wisc.edu
*.bsr.wisc.edu
*.bursar.wisc.edu
*.businessservices.wisc.edu
*.caarn.wisc.edu
*.campus-it-service-catalog.wisc.edu
*.cancerclearandsimple.wisc.edu
*.canes.wisc.edu
*.cde.wisc.edu
*.cdha.wisc.edu
*.celticstudies.wisc.edu
*.cems.wisc.edu
*.chicla.wisc.edu
*.childdevelopmentlab.wisc.edu
*.china.wisc.edu
*.chpdc.wisc.edu
*.cjs.wisc.edu
*.clear.wisc.edu
*.clfs.wisc.edu
*.cmp.wisc.edu
*.commonground.wisc.edu
*.constitution.wisc.edu
*.cornbreeding.wisc.edu
*.cryoem.wisc.edu
*.csumc.wisc.edu
*.ctri.wisc.edu
*.envirosci.wisc.edu
*.wsel.wisc.edu
idia.labs.wisc.edu
iri.vetmed.wisc.edu
matson.pathology.wisc.edu
psycholinguisticslab.english.wisc.edu
ptml.sjmc.wisc.edu
sperandiolab.mmi.wisc.edu
uwac.anthropology.wisc.edu
*.agrability.bse.wisc.edu
*.ams.bse.wisc.edu
*.asabe.bse.wisc.edu
*.azred.bse.wisc.edu
*.badgerpulling.bse.wisc.edu
*.biorefining.bse.wisc.edu
*.biosystems-analysis.bse.wisc.edu
*.bohnhoff.bse.wisc.edu
*.digitalag.bse.wisc.edu
*.ghostarmyheroes.continuingstudies.wisc.edu
*.idia.labs.wisc.edu
*.intranet.csd.wisc.edu
*.iri.vetmed.wisc.edu
*.matson.pathology.wisc.edu
*.nafmp.csumc.wisc.edu
*.psycholinguisticslab.english.wisc.edu
*.ptml.sjmc.wisc.edu
*.sperandiolab.mmi.wisc.edu
*.uwac.anthropology.wisc.edu
*.wep.csumc.wisc.edu
*.wimachineryextension.bse.wisc.edu
*.wtlc.csumc.wisc.edu