Open
Cached
·
just now
86/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q3
Valid From
August 26, 2025
Valid Until
February 22, 2026
26 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:0B:FF:17:FA:8B:B0:F3:0B:A0:0E:25:E2:76:B7:B6:BA:0E:15:E0:98:87:90:47:46:25:2F:B5:A1:03:56:68
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Basic
default-src; script-src; connect-src; +3 more
default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Present
origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
150 domains
booking-cert.flyasky.com
booking-stage.flyasky.com
checkin-cert.flyasky.com
checkin-stage.flyasky.com
checkin.flyasky.com
dc-cert.flyasky.com
dc.flyasky.com
dcci-cert.flyasky.com
dcci.flyasky.com
reservations.abyadina.com
booking.arevcollection.com
reservations.avalonhotel.se
booking.biman-airlines.com
checkin-cert.biman-airlines.com
checkin-stage.biman-airlines.com
checkin.biman-airlines.com
digital.biman-airlines.com
lyon.boscolocollection.com
nice.boscolocollection.com
reservations.casaciprianimilano.com
booking.dasseepark.at
reservations.dbr.sa
reservations.farawaynantucket.com
getthere.com
www.getthere.com
reservations.grandbeachhotel.com
reservations.grandhotelparkers.it
reservations.grandjoanne.dk
reservations.hoiana.com
reservations.hydehollywoodbeach.com
imperva.com
dxcheckin.km-malta.com
book.maxbrownhotels.com
reservation.middleeight.com
evolutix.mynuvola.com
booking.ninahotelgroup.com
reservations.nineorchard.com
stage-booking.nokair.com
reservations.oasyhotel.com
reservations.oso.co
stay.oudewerf.co.za
booking.pletzer-resorts.com
aoi.app.radixxhost.com
aoi.appota.radixxhost.com
aoi.dcs.radixxhost.com
aoi.res.radixxhost.com
tok.app.radixxhost.com
tok.appota.radixxhost.com
tok.dcs.radixxhost.com
tok.res.radixxhost.com
symdscert12.radixxuat.com
book.rakxawellness.com
reservations.rendezvoushotels.com.au
sabre-holdings.com
www.sabre-holdings.com
accounts.havail.sabre.com
airconnectivity-gcp.cert.sabre.com
airconnectivity-gcp.sabre.com
am-ro-c1.avro.cert.aws.sabre.com
am-ro-c1.avro.prod.aws.sabre.com
am-ro.avro.cert.aws.sabre.com
am-ro.avro.prod.aws.sabre.com
arajet-api-cert.ezycommerce.sabre.com
arajet-api-cert.ezypayment.sabre.com
arajet-api.ezycommerce.sabre.com
arajet-api.ezypayment.sabre.com
arajet-ext-api-cert.ezycommerce.sabre.com
arajet-ext-api.ezycommerce.sabre.com
b6-1.avro.prod.sabre.com
b6.avro.prod.sabre.com
bbmnt.tsts.sabre.com
canalytics.cert.sabre.com
caw-akasa.cert.sabre.com
checkinconfigmanager.migrations.int.sabre.com
crmconnect.sis.sabre.com
crmconnectprod.sis.sabre.com
dl-ro-c1.avro.cert.aws.sabre.com
dl-ro-c1.avro.prod.aws.sabre.com
dl-ro.avro.cert.aws.sabre.com
dl-ro.avro.prod.aws.sabre.com
dv.avro.cert.sabre.com
dynamic-gfx.sabre.com
egrc.sabre.com
ey-c1.avfo.as.cert.asc.sabre.com
ey-c1.avfo.as.prod.asc.sabre.com
kp.avro.cert.sabre.com
ls-demo.avro.cert.sabre.com
opscomm.yaa.cert.sabre.com
ph-dev.shs.dev.asc.sabre.com
ph-ops.shs.dev.asc.sabre.com
rx-ro.avro.cert.aws.sabre.com
s1analytics.cert.sabre.com
s2analytics.cert.sabre.com
s3analytics.cert.sabre.com
sabreredappcentre.sabre.com
sph-datamigration.shs.cert.asc.sabre.com
sph-datamigration.shs.prod.asc.sabre.com
sph-dev.shs.dev.asc.sabre.com
sph-ops.shs.dev.asc.sabre.com
static.marketplace.sabre.com
va-ro-c1.avro.cert.aws.sabre.com
va-ro.avro.cert.aws.sabre.com
webar.ri.sabre.com
webcmcert.avri.as.cert.asc.sabre.com
webcmprod.avri.as.prod.asc.sabre.com
webpmp.ar.ri.cert.sabre.com
webpmp.ar.ri.sabre.com
webpmp.h2.ri.cert.sabre.com
webpmp.vs.ri.sabre.com
webqa.ar.ri.cert.sabre.com
webqa.h2.ri.cert.sabre.com
wolverine-api-ut1-ju.cert.sabre.com
www.2101.usc1.planning-optimization.sabre.com
www.7701.usc1.planning-optimization.sabre.com
www.yw01.euw3.planning-optimization.sabre.com
sabre.pl
www.sabre.pl
sabreairlinesolutions.com
www.sabreairlinesolutions.com
amadeus-gds.sabrehospitality.com
crs.sabrehospitality.com
sabre-gds.sabrehospitality.com
sabrehospitality.com
travelport-gds.sabrehospitality.com
www.sabrehospitality.com
sabrespark.com
www.sabrespark.com
sabretravelnetwork.com
www.sabretravelnetwork.com
reservations.vienna.sacher.com
booking.swissholidaypark.ch
be-cms-p1.synxis.com
be-p1.synxis.com
be-p2-t.synxis.com
reservations.thebeachside.com
reserve.thechelseannewyork.com
reservations.thegeorgianterrace.com
travlynx.com
www.travlynx.com
reservations.verdihotels.com
dc-cert.zambia-airways.com
dc.zambia-airways.com
dcci-cert.zambia-airways.com
dcci.zambia-airways.com
dxbooking-cert.zambia-airways.com
dxbooking-stage.zambia-airways.com
dxbooking.zambia-airways.com
dxci-cert.zambia-airways.com
dxci-stage.zambia-airways.com
dxci.zambia-airways.com
Other domains in certificate