SSL Certificate Analysis for proviewcloud.com - Security Grade & TLS Configuration

Open Cached · just now

77/100 SECURITY SCORE

Certificate Information

Subject

CN=lotuss-test.originsme.com

Issuer

C=US, O=Google Trust Services, CN=WR3

Valid From

October 17, 2025

Valid Until

January 16, 2026 62 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

55:67:BD:8E:DD:C8:80:E5:69:58:BC:12:82:DE:7C:61:56:A0:EE:7F:A7:2D:92:F0:94:0D:73:A6:79:3F:15:6C

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31556926

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

proviewcloud.com

Other domains in certificate

11520560.peerly.app

40use.com

www.5u.hk

actosoft.com.mx

acueregroup.com

albertodente.it

partner.allthetables.com

anakeesta.app.staging.alpinemedia.com east-west.get.staging.alpinemedia.com pats-peak.app.staging.alpinemedia.com shawnee.app.staging.alpinemedia.com

www.amplnk.com

attendance.anjaconline.org

anymatix.com www.anymatix.com

www.apsoftware.dev

ariusheavymetal.com

atlon.app

info.bandygrytan.se

buzz.bannisters.family

barabudhur.com

besttreeserviceandlandscaping.com

cadiahk.com

canalamplifica.com

certcrammer.com

warner-prod-app.closedcaptionconverter.com

doc.m2live.co.kr job-gunghap.co.kr link.rentalk.co.kr

peninsoundla.launcher.com.tw

cuicker.io

www.curaceec.com

datamachine.works

tracker.doesoh.com

dashboard.dormi.io

findpeedia.com

www.fleetdispatch.io

ddemo.www.freedommail.me

frerichs.fr

backoffice.getluvu.com

getwhich.app

wishlist-with-friends.gkaufman.dev

share.heatseekr.app

heychrisbarr.com

www.i4technology.net

murabito.iidangooo.info

dianaugo.invito.click

www.junueducationservices.com

ctgov.kiq.app

www.kitolabs.com

www.klopworld.dk

artemid.landlele.com

quizpoker.lets.stream

www.madrassatyoussef.com

maiwand.lol

www.mamarepedia.com

www.markus-sterner.de

www.maxvonbeust.com

demo.www.meiwa.jp

www.metariba.io

mrindrs.site

app.neverland.finance

www.oliverkoh.com

www.onotag.com

lotuss-test.originsme.com

proctr.app

qianlonglong.com

www.quinlan.ai

rajneethi.ai

retrody.com

www.revate.io

robinsonlifestylesummer.com

www.rohitbind.in

saanpseedipictures.com

sagananuts.com

cdn.salcobrand.cl

sanofi.io

toolkit.scotdance.app

www.searchprecision.com

quiz.sgschoolwork.sg

soscorredores.com

ssmart.in

www.suchinfarm.com

demo.thecodeflix.com

thedevhouse.io

www.thedsignstudio.com

timeforventures.com

www.timesofpeople.com

www.tirelesstrader.com

sip.tirtapatriot.com

asignaciones.tvnmedia.com

citroen.u-ride.me

cdc.espace-accedant.upbycellance.com

vmcreation.com

livedashboard.voltlines.com

xplosangeles.com

yarub-ai.com

podcasts.yayaapps.com

track.ylogapp.com