Open
Cached
·
just now
81/100
SECURITY SCORE
Certificate Information
Subject
CN=svs3-2.3m.com
Issuer
C=US, O=Amazon, CN=Amazon RSA 2048 M02
Valid From
January 15, 2025
Valid Until
February 13, 2026
87 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
32:71:84:93:C1:7D:DF:30:2A:55:91:3D:64:D0:D8:31:CB:A8:21:F9:6B:E0:49:CD:27:22:EC:A9:5C:71:79:08
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Significantly strengthen CSP directives
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
97 domains
post-it.com
svs3-2.3m.com
littmann.3m.com.ar
nexcare.3m.com.ar
nexcare.3m.com.co
nexcare.3m.com.pe
nexcare.3m.com.ve
nexcare.3mchile.cl
acebrand.com
bairhugger.com
www.bairhugger.com
nexcare.3m.co.cr
post-it.co.cr
scotch.co.cr
post-it.co.id
post-it.co.in
3mtinting.co.kr
futuro.co.kr
post-it.co.kr
post-it.co.th
post-it.com.bo
nexcare.3m.com.do
scotch.3m.com.do
nexcare.3m.com.ec
scotch.com.ec
nexcare.3m.com.gt
post-it.com.gt
scotch.com.gt
nexcare.3m.com.hn
scotch.3m.com.hn
command.com.my
nexcare.3m.com.ni
scotch.3m.com.ni
nexcare.3m.com.pa
post-it.com.pa
scotch.com.pa
command.com.ph
post-it.com.ph
nexcare.3m.com.py
command.com.sg
nexcare.3m.com.sv
scotch.com.sv
command.com.tr
command.com.tw
futuro.com.tw
littmann.com.tw
post-it.com.tw
scotch.com.tw
nexcare.3m.com.uy
command.cl
command.com
command.com.mx
command.in
command.jp
command.pl
commandbrand.co.nz
commandbrand.com.au
filtrete.ca
filtrete.com
filtrete.com.au
filtrete.jp
futuro-usa.com
futuro.co.nz
littmann.ca
littmann.com
littmann.com.au
littmann.com.br
littmann.com.mx
littmann.in
littmann.jp
nexcare.co.nz
nexcare.com
nexcare.com.au
nexcare.com.br
nexcare.com.mx
nexcare.jp
post-it.cl
post-it.co
post-it.co.nz
post-it.com.ar
post-it.com.au
post-it.com.br
post-it.com.mx
post-it.com.ve
post-it.ec
post-it.hn
post-it.jp
post-it.pe
post-it.pl
post-it.sv
post-it.tw
scotch.cl
scotch.com.co
scotch.com.pe
scotch.cz
scotch.hu
scotch.jp
Other domains in certificate