Open
Cached
·
just now
91/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Georgia, L=Alpharetta, O=Lexisnexis Risk Solutions Inc., CN=choicepoint.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018
Valid From
May 13, 2025
Valid Until
June 14, 2026
217 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:2B:8C:5C:3A:5B:28:6B:AC:00:9C:01:AC:97:60:67:AC:83:C4:38:87:03:73:6A:DB:5B:89:82:C5:FE:6C:44
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
sameorigin
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Present
camera=(self), microphone=(self)
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
CAA Records (Certificate Authority Authorization)
CAA Records
Configured
(Restricts certificate issuance)
Current Issuer
Authorized
(Matches CAA policy)
Authorized CAs
amazontrust.com
comodoca.com
digicert.com
; cansignhttpexchanges=yes
globalsign.com
letsencrypt.org
pki.goog
; cansignhttpexchanges=yes
ssl.com
vikingcloud.com
Wildcard CAs
comodoca.com
digicert.com
; cansignhttpexchanges=yes
globalsign.com
letsencrypt.org
pki.goog
; cansignhttpexchanges=yes
ssl.com
vikingcloud.com
Recommendations
- • Consider using critical flag (flags=128) for stricter CAA enforcement
- • You have authorized 8 CAs - consider limiting to only the CAs you actively use
- • Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
Subject Alternative Names
65 domains
lexisnexisrisk.com
www.lexisnexisrisk.com
accuity.com
www.accuity.com
adamprogram.com
www.adamprogram.com
adamprogram.org
www.adamprogram.org
behaviosec.com
cloud.behaviosec.com
info.behaviosec.com
www.behaviosec.com
bridger.com
www.bridger.com
choicepoint.com
www.choicepoint.com
choicepoint.net
www.choicepoint.net
coplogic.com
www.coplogic.com
crashdesigner.com
www.crashdesigner.com
datalister.com
www.datalister.com
digitalidentityguide.com
www.digitalidentityguide.com
digitalidentitysummit.com
www.digitalidentitysummit.com
emailage.com
www.emailage.com
enclarity.com
www.enclarity.com
flyreel.co
www.flyreel.co
humanapi.co
www.humanapi.co
idanalytics.com
www.idanalytics.com
iil.co.uk
www.iil.co.uk
iyetek.com
lexisnexis.co.uk
www.lexisnexis.co.uk
learn.lexisnexis.com
risk.lexisnexis.jp
www.risk.lexisnexis.jp
lexisnexisrisk.co.uk
www.lexisnexisrisk.co.uk
medai.com
riskmetricscorp.com
www.riskmetricscorp.com
shopforcomp.com
www.shopforcomp.com
threatmetrix.com
www.threatmetrix.com
threatmetrix.eu
www.threatmetrix.eu
threatmetrix.is
www.threatmetrix.is
threatmetrix.us
www.threatmetrix.us
trunarrative.com
www.trunarrative.com
www.zetx.com
zetx.com
Other domains in certificate