Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
C=CH, ST=Zürich, L=Zürich, O=ABB Asea Brown Boveri Ltd, CN=waf-abb-cert09.abb.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1
Valid From
November 17, 2025
Valid Until
March 03, 2026
40 days
Public Key
ECDSA
256 bit
(P-256)
Adequate
Signature Algorithm
ECDSA-SHA384
SHA-256 Fingerprint
A8:52:48:B6:EA:B7:76:93:10:8E:45:0F:12:C4:2E:99:4D:D9:3F:EE:FD:EC:CB:1D:26:FA:6A:87:1D:06:CD:69
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15768000 ; includeSubDomains ; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
99 domains
ccp.abb.com
ccrp.abb.com
dataguard.abb.com
el-suppliernet.abb.com
emergency-lighting-configurator.abb.com
isobs-orchestration.abb.com
mcs-customer-support.abb.com
myportal.abb.com
search-ext.abb.com
search.abb.com
servicevalue.abb.com
spine.abb.com
waf-abb-cert09.abb.com
amer.multiscan.abb.com
amer01.multiscan.abb.com
amer02.multiscan.abb.com
api.emergency-lighting-configurator.abb.com
bolservices-qfe.it.abb.com
businessapps.collaboration.abb.com
comfortplaner.de.abb.com
dev.ccrp.abb.com
dev.emergency-lighting-configurator.abb.com
dev.smartsocieties.abb.com
docstage.collaboration.abb.com
ebiz.in.abb.com
electricalsystems.myremotecare.abb.com
emea.multiscan.abb.com
emea01.multiscan.abb.com
emea02.multiscan.abb.com
guesthouse.in.abb.com
k8s.electrificationtools.abb.com
low-voltage-application.configurator.abb.com
nizke-napeti.cz.abb.com
provident-fund.in.abb.com
qa.emobility.abb.com
safety.in.abb.com
search-ext.stage.abb.com
search-ext.test.abb.com
search.stage.abb.com
search.test.abb.com
sitesapps.collaboration.abb.com
smart-ip-configurator.mybuildings.abb.com
spacebooking.it.abb.com
st1.myportal.abb.com
stage.ccrp.abb.com
stage.dataguard.abb.com
stage.emergency-lighting-configurator.abb.com
stage.pama-cpq.abb.com
stage.robotupgradecare.abb.com
sudeya.in.abb.com
test.coresolutions.abb.com
test.emergency-lighting-configurator.abb.com
test.pama-cpq.abb.com
testextdmz.us.abb.com
vypinace.sk.abb.com
api.comfortplaner.de.abb.com
api.easypro.mybuildings.abb.com
api.low-voltage-application.configurator.abb.com
dev.api.emergency-lighting-configurator.abb.com
dev.comfortplaner.de.abb.com
dev.el-sales.ca.abb.com
dev.ftp.pdc.abb.com
dev1.comfortplaner.de.abb.com
qa.library.industrialsolutions.abb.com
stage.api.emergency-lighting-configurator.abb.com
stage.comfortplaner.de.abb.com
stage.conditionmonitoring.traction.abb.com
stage.location-security.in.abb.com
stage.sudeya.in.abb.com
test.api.emergency-lighting-configurator.abb.com
test.comfortplaner.de.abb.com
test1.comfortplaner.de.abb.com
wizard.enclosures.econfigure.abb.com
www.nizke-napeti.cz.abb.com
api.new.welcome-configurator.mybuildings.abb.com
dev.api.comfortplaner.de.abb.com
dev.reg-api.drivetune.motion.abb.com
dev1.api.comfortplaner.de.abb.com
stage.api.comfortplaner.de.abb.com
stage.api.drivetune.motion.abb.com
test.api.comfortplaner.de.abb.com
test1.api.comfortplaner.de.abb.com
trial.api.accessmanagement.motion.abb.com
dev.api.new.welcome-configurator.mybuildings.abb.com
stage.api.new.welcome-configurator.mybuildings.abb.com
test.api.new.welcome-configurator.mybuildings.abb.com
adfsauthenticationbackendservice.abb-drives.com
stage.adfsauthenticationbackendservice.abb-drives.com
www.abb-manuals.com
psa.abb.com.br
abb.admin.chargedot.com
uatabb.admin.chargedot.com
api.app.smissline.abb
app.smissline.abb
productconfigurator.tnb.com
tnbaccess.tnb.com
tnblnx3.tnb.com
tnbsales.tnb.com
www.tnb.com
Other domains in certificate