Open
Cached
·
just now
89/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2026 Q1
Valid From
February 02, 2026
Valid Until
August 01, 2026
171 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B8:94:C4:A2:0B:D7:67:BC:54:D9:96:D1:B8:67:55:3A:CA:E1:C6:2F:76:59:80:54:D2:35:EC:F2:CE:1B:3F:AD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains;
Content-Security-Policy
Good
default-src; script-src; style-src; +9 more
default-src 'self'; script-src 'self' 'nonce-ZTFlYTQ0ZDgtOWE2Yi00M2E1LWIzYjgtMTAwNDhjZDQ0YWRm' 'strict-dynamic'; style-src 'self' 'unsafe-inline' https://www.googletagmanager.com/ https://tagmanager.google.com/ https://fonts.googleapis.com/; img-src 'self' blob: data: https: https://developer.cert.sabre.com/api/v1/; font-src 'self' data: https://fonts.gstatic.com/; object-src 'none'; connect-src 'self' *.sabre.com/ *.qualtrics.com/ https://developer.cert.sabre.com/api/v1/ https://public.login.cert.sabre.com/ https://www.recaptcha.net/ https://siteintercept.qualtrics.com/ https://cdn.cookielaw.org/ https://cookie-cdn.cookiepro.com/ https://privacyportal.onetrust.com/ https://geolocation.onetrust.com/ https://*.googletagmanager.com/ https://*.google-analytics.com/ https://*.analytics.google.com/ https://*.google-analytics.com https://*.googletagmanager.com https://*.g.doubleclick.net https://*.google.com https://pagead2.googlesyndication.com; base-uri 'self'; frame-src 'self' *.sabre.com/ *.qualtrics.com/ https://public.login.cert.sabre.com/oauth2/ausmd2he2nHxug9FP1d7/ https://www.youtube.com/ https://www.recaptcha.net/ https://td.doubleclick.net/ https://www.googletagmanager.com/ https://www.sabresurveys.com/; form-action 'self' https://www.sabresurveys.com/; frame-ancestors *.sabre.com/ *.qualtrics.com/ https://public.login.cert.sabre.com/oauth2/ausmd2he2nHxug9FP1d7/ https://www.youtube.com/ https://www.recaptcha.net/ https://td.doubleclick.net/ https://www.googletagmanager.com/ https://www.sabresurveys.com/; upgrade-insecure-requests;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Strengthen CSP by removing 'unsafe-eval'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
142 domains
asreporting-us-central-green.sabre.com
dms.sabre.com
dx-dw-certprod.sabre.com
marketintelligence.sabre.com
quick-gcp.sabre.com
aa-checkout.cert.sabre.com
am.lm.sabre.com
asreporting-us-central-green.cert.sabre.com
bermudair-api-cert.ezycommerce.sabre.com
bermudair-api-cert.ezypayment.sabre.com
bermudair-api.ezycommerce.sabre.com
bermudair-api.ezypayment.sabre.com
bermudair-ext-api-cert.ezycommerce.sabre.com
bermudair-ext-api.ezycommerce.sabre.com
cert.lds.sabre.com
cert.marketint.sabre.com
cert.quick-gcp.sabre.com
checkinconfigmanager.messaging.sabre.com
developer.cert.sabre.com
dms-tc2.cert.sabre.com
dms-ut2.cert.sabre.com
g3.lm.sabre.com
hotelbooker.cert.sabre.com
hotelbookeradmin.cert.sabre.com
hotelbookeragencyadmin.cert.sabre.com
hotelbookerreports.cert.sabre.com
hotelbookerssl.cert.sabre.com
merge-sheriff.cert.sabre.com
merge-sheriff.prod.sabre.com
sabremosaic-api-tc1-aa.cert.sabre.com
sabremosaic-api-ut2-aa.cert.sabre.com
weba3.ri.sabre.com
webet.ix.sabre.com
webgf.ri.sabre.com
webva.ix.sabre.com
a3-1.avro.cert.sabre.com
ac.avfo.cert.sabre.com
ai.avro.cert.sabre.com
ap-demo.avro.cert.sabre.com
api.hotelbooker.cert.sabre.com
b6-1.avro.cert.sabre.com
checkinconfigmanager.messaging.cert.sabre.com
dw.el.certintbox1.sabre.com
et.avfo.cert.sabre.com
rx.cro.cert.sabre.com
tg.avfo.prod.sabre.com
va-2.avro.prod.sabre.com
webpmp.a3.ri.sabre.com
webpmp.et.ix.sabre.com
webpmp.gf.ri.sabre.com
webpmp.va.ix.sabre.com
webpmp.a3.ri.cert.sabre.com
webpmp.gf.ri.cert.sabre.com
webpmp.va.ix.cert.sabre.com
webpt.x0.ix.cert.sabre.com
webqa.a3.ri.cert.sabre.com
webqa.et.ix.cert.sabre.com
webqa.gf.ri.cert.sabre.com
webqa.va.ix.cert.sabre.com
webtest.et.ix.cert.sabre.com
webtest.va.ix.cert.sabre.com
www.a301.euw3.planning-optimization.sabre.com
www.f801.usc1.planning-optimization.sabre.com
www.f901.usc1.planning-optimization.sabre.com
www.2101.usc1.cert.planning-optimization.sabre.com
www.5601.apse1.cert.planning-optimization.sabre.com
www.nz01.ause1.cert.planning-optimization.sabre.com
www.qq01.ause1.cert.planning-optimization.sabre.com
www.tm01.apse1.cert.planning-optimization.sabre.com
www.uk01.apse1.cert.planning-optimization.sabre.com
www.va01.ause1.cert.planning-optimization.sabre.com
www.yw01.euw3.cert.planning-optimization.sabre.com
www.zl01.ause1.cert.planning-optimization.sabre.com
reservations.93luxurysuites.com
reservation.arizonagrandresort.com
reservations.bestloved.com
reservations.bloomhouse-hotel.com
reservations.boavistasurflodge.com.br
reservations.canaryriversideplaza.com
reservations.careysmanor.com
reservation.casalomalagunabeach.com
apigw.israir.co.il
ofakim.co.il
onlineskideal.skideal.co.il
www.ofakim.co.il
reservations.eleganthotelcollection.com
reservations.eriro.at
nokair-gcp-cert-stg1-ezycommerce.ezyflight.se
cts-cert-internal.getthere.net
cts-prod-internal.getthere.net
reservations.grandhoteletdemilan.it
book.gravetyemanor.co.uk
reserve.hammettshotel.com
reservation.highcountrymotorlodge.com
reservations.hotelbleucarry.com
reservation.hotelbowmannparis.com
reserve.hoteldownstreet.com
reservations.hotelfloridaparis.com
booking.hotelgreenpark.com
booking.idiliqhotels.com
imperva.com
reservation.laplayahotel.com
reservations.laposch.com
stay.makaremhotels.com
reservations.montaguarmshotel.co.uk
blackdesertresort.mynuvola.com
laquinta52706.mynuvola.com
uschotel.mynuvola.com
bookings-cert.omanair.com
bookings-stage.omanair.com
dc-cert.omanair.com
dx-cert-checkin.omanair.com
dx-stage-checkin.omanair.com
book-hotels.onni.com
reservations.palace.de
casapalmero.pebblebeach.com
arj.app.radixxcert.com
arj.appota.radixxcert.com
arj.dcs.radixxcert.com
arj.res.radixxcert.com
avo.dcs.radixxcert.com
avo.res.radixxcert.com
trs.appota.radixxcert.com
trs.dcs.radixxcert.com
trs.res.radixxcert.com
www.ts.sabretsapac.com
secure.sunbornlondon.com
reservations.theabnerhotel.com
reservation.thehotelcarmel.com
reservation.thelagunabeachhouse.com
reservation.thescottresort.com
reservations.thyme.co.uk
reservations.tortue.de
reservations.trappfamily.com
booking.unaitalianhospitality.com
reservations.unicohotelcollection.com
reservations.valleyriverinn.com
reservations.villacora.it
dc-cert.westjet.com
dc.westjet.com
dcci-cert.westjet.com
dcci.westjet.com
Other domains in certificate