SSL Certificate Analysis for delloutlet.com - Security Grade & TLS Configuration

Certificate Information

Subject

C=US, ST=Texas, L=Round Rock, O=Dell Technologies Inc., CN=vanities3.dell.com

Issuer

C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1

Valid From

July 08, 2025

Valid Until

August 08, 2026 274 days

Public Key

ECDSA 256 bit (P-256) Adequate

Signature Algorithm

ECDSA-SHA384

SHA-256 Fingerprint

56:FE:37:FF:4A:AC:54:7F:31:92:B1:65:E1:DB:24:38:91:6D:33:F0:B2:B7:2C:0B:A4:D6:85:C0:64:5D:5C:B7

Alternative Names

65 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=86400 ; preload

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Present

ch-dpr=i.dell.com,ch-viewport-width=i.dell.com,ch-width=i.dell.com,dpr=i.dell.com,viewport-width=i.dell.com,width=i.dell.com

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

CAA Records (Certificate Authority Authorization)

CAA Records

Configured (Restricts certificate issuance)

Current Issuer

Authorized (Matches CAA policy)

Authorized CAs

digicert.com ; account=b34fd286db03ccad020f0a75010dd75544eaf2b967195b4becb6460c924d35c9

Incident Reporting

mailto:[email protected]

Recommendations

• Consider using critical flag (flags=128) for stricter CAA enforcement
• Consider adding 'issuewild' records to control wildcard certificate issuance

Subject Alternative Names

65 domains

delloutlet.com

Other domains in certificate

accessories.ap.dell.com accessories.euro.dell.com accessories.la.dell.com ap.dell.com api-credentials.dell.com bto.cd.dell.com community.dell.com content.dell.com cs.ap.dell.com de.community.dell.com democenter.dell.com dfsm-api.dell.com dfsm-portal-api.dell.com docs.us.dell.com en.community.dell.com es.community.dell.com euro.dell.com fr.community.dell.com gafp.cd.dell.com gscv-outside.dell.com ireland.dell.com ja.community.dell.com ko.community.dell.com koaduty.dell.com laptops.dell.com ondemand.cd.dell.com partnerdirect.dell.com premier.euro.dell.com premierdoc.dell.com premierreports.dell.com premiersupport.dell.com premiersupport.us.dell.com pt.community.dell.com rimsapcchub.apcc.dell.com rimsccchub.apcc.dell.com rpe.us.dell.com support.ap.dell.com support.dell.com support.euro.dell.com support.jp.dell.com support.la.dell.com support.us.dell.com support1.ap.dell.com supportapj.dell.com teckno.dell.com uk.dell.com vanities3.dell.com vapprove.dell.com www-cdn.dell.com www.ap.dell.com www.dfs.dell.com www.euro.dell.com www.jp.dell.com www.support.dell.com www1.ca.dell.com www1.dell.com www1.us.dell.com www1regions.dell.com wwwcdn.dell.com zh.community.dell.com

developer.dellemc.com

dellfinancialservices.ca

dellfinancialservices.com

itdlog-democenter.delltechnologies.com