SSL Certificate Analysis for nvidia.com - Security Grade & TLS Configuration

Certificate Information

Subject

CN=nvidia.com

Issuer

C=US, O=Amazon, CN=Amazon RSA 2048 M03

Valid From

May 20, 2025

Valid Until

June 18, 2026 227 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

3E:69:10:DA:47:44:88:47:73:AC:92:44:32:C8:EA:B4:0D:0D:6D:E6:1D:DC:7D:4C:8A:F0:26:9D:9B:D2:C2:86

Alternative Names

97 domains

Security Configuration

TLS Protocols

TLS 1.2

Forward Secrecy

Limited (Check cipher configuration)

Warnings

• TLS 1.3 is not supported (recommended)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Weak

frame-ancestors

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

97 domains

nvidia.com *.nvidia.com

Other domains in certificate

nvidia.co.at *.nvidia.co.at

nvidia.co.id *.nvidia.co.id

nvidia.co.in *.nvidia.co.in

nvidia.com.pl *.nvidia.com.pl

nvidia.com.tr *.nvidia.com.tr

nvidia.com.ua *.nvidia.com.ua

nvidea.com *.nvidea.com

nvidia.ae *.nvidia.ae

nvidia.at *.nvidia.at

nvidia.be

nvidia.bid *.nvidia.bid

nvidia.ca *.nvidia.ca

nvidia.ch *.nvidia.ch

nvidia.cn *.nvidia.cn

nvidia.co.jp *.nvidia.co.jp

nvidia.co.uk *.nvidia.co.uk

nvidia.com.br *.nvidia.com.br

nvidia.company *.nvidia.company

nvidia.computer *.nvidia.computer

nvidia.cz *.nvidia.cz

nvidia.de *.nvidia.de

nvidia.dk *.nvidia.dk

nvidia.email *.nvidia.email

nvidia.eu *.nvidia.eu

nvidia.foundation *.nvidia.foundation

nvidia.games *.nvidia.games

nvidia.global *.nvidia.global

nvidia.graphics *.nvidia.graphics

nvidia.ie *.nvidia.ie

nvidia.inc *.nvidia.inc

nvidia.info *.nvidia.info

nvidia.jp *.nvidia.jp

nvidia.luxe *.nvidia.luxe

nvidia.net *.nvidia.net

nvidia.news *.nvidia.news

nvidia.org *.nvidia.org

nvidia.press *.nvidia.press

nvidia.sex *.nvidia.sex

nvidia.site *.nvidia.site

nvidia.software *.nvidia.software

nvidia.sucks *.nvidia.sucks

nvidia.support *.nvidia.support

nvidia.technology *.nvidia.technology

nvidia.trade *.nvidia.trade

nvidia.university *.nvidia.university

nvidia.video *.nvidia.video

nvidia.wiki *.nvidia.wiki

nvidia.world *.nvidia.world