Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q4
Valid From
January 03, 2026
Valid Until
July 02, 2026
147 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:04:84:8F:4E:8F:EA:EF:E3:99:A5:EB:C1:59:A6:C6:DB:38:A6:DA:1B:5A:F4:1A:0F:63:FE:84:9F:47:4A:B5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
141 domains
reservation.dusit.com
reservations.bahiacabo.com
reservations.beacongrand.com
myreservations.birchcommunity.com
reservations.coeurdemegeve.com
booking.dehistoriske.com
reservations.dorchestercollection.com
reservations.grandhotelbellevuelondon.com
reservations.hardrockhotels.com
reservations.hotelabbayeparis.com
booking.hoteldelfinotaranto.com
reservations.hotelsaint.com
imperva.com
reservations.inntelhotels.nl
mybooking-cert.ita-airways.com
katikies-chromata-reservation.katikies.com
katikies-garden-reservation.katikies.com
katikies-kirini-reservation.katikies.com
katikies-mykonos-reservation.katikies.com
katikies-santorini-reservation.katikies.com
dc-cert.kmmaltairlines.com
dc.kmmaltairlines.com
dcci.kmmaltairlines.com
reservations.maqohotels.com
aspenmeadowsresort.mynuvola.com
hydedubai.mynuvola.com
insideboho.mynuvola.com
nuvolatraining.mynuvola.com
qualityhotel.mynuvola.com
websocket.mynuvola.com
wyndhamriomar.mynuvola.com
reservations.naamavillas.com
book.nighteliercollective.com.au
book.vancouver.opushotel.com
hotelreservations.peermont.com
reservations.mena.premierinn.com
reservations.quintadolagohotel.com
aok.app.radixx.com
trs.app.radixxcert.com
nok.app.radixxhost.com
sxp.app.radixxhost.com
sxp.appota.radixxhost.com
eveappota.radixxuat.com
eveappuat3.radixxuat.com
evedcsuat3.radixxuat.com
everesuat3.radixxuat.com
booking.resortragaz.ch
*.3m.ri.cert.sabre.com
7h.avro.cert.sabre.com
7h.avro.prod.sabre.com
a3.avro.cert.sabre.com
airlinedatacollection.crt.sabre.com
amdm.cert.sabre.com
amdm.prod.sabre.com
apisci.sabre.com
b6.avro.cert.sabre.com
caw-hx.cert.sabre.com
caw-pg.cert.sabre.com
caw-ul.cert.sabre.com
cert.avcrm.sabre.com
dev1.avfo.as.dev.asc.sabre.com
dev2.avfo.as.dev.asc.sabre.com
dev3.avfo.as.dev.asc.sabre.com
dv-ro.avro.cert.aws.sabre.com
files-beta.developer.sabre.com
files.developer.cert.sabre.com
gcpboomiprod.sabre.com
genericxml.ana.cert.sabre.com
gq-ro-c1.avro.cert.aws.sabre.com
gq-ro.avro.cert.aws.sabre.com
hotels.havail.sabre.com
identity.cert.sabre.com
kq.avfo.as.dev.asc.sabre.com
nokair-api-cert.ezycommerce.sabre.com
nokair-api.ezycommerce.sabre.com
nt-1.avro.prod.sabre.com
nt.avro.prod.sabre.com
ou-1.avro.prod.sabre.com
ou.avro.prod.sabre.com
pcccrmconnect1.sabre.com
pcccrmconnect2.sabre.com
pccwk2.sabre.com
prismdatacert.sabre.com
react.avfo.as.dev.asc.sabre.com
sctmonitoring.sabre.com
sense.cert.sabre.com
sense.sabre.com
sense.test.sabre.com
srw.cert0.sabre.com
srw.int.sabre.com
tg.avfo.as.dev.asc.sabre.com
tokiair-api-cert.ezycommerce.sabre.com
tokiair-api.ezycommerce.sabre.com
tv.sabre.com
ua.avfo.as.dev.asc.sabre.com
updatesite.int.sabre.com
view.cert.sabre.com
view.dev.sabre.com
view.sabre.com
view.test.sabre.com
vn.reaccom-manager.cert.sabre.com
webazcert.avix.ix-az.prod.asc.sabre.com
webazdev.avix.ix-az.prod.asc.sabre.com
webazprod.avix.ix-az.prod.asc.sabre.com
webetprod.avix.ix-et.prod.asc.sabre.com
webkp.ri.sabre.com
webpmp.8u.ri.cert.sabre.com
webpmp.iw.ri.sabre.com
webpmp.kx.ri.cert.sabre.com
webpmp.kx.ri.sabre.com
webqa.g3.ri.cert.sabre.com
webqa.kp.ri.cert.sabre.com
wolverine-offer-xml-adapter-tc1.cert.sabre.com
wolverine-res-s2-tc1.cert.sabre.com
www.4601.euw3.planning-optimization.sabre.com
www.6e01.apse1.planning-optimization.sabre.com
www.ar01.usc1.cert.planning-optimization.sabre.com
www.sv01.euw3.planning-optimization.sabre.com
reservation.saiihotels.com
reservation.santiburisamui.com
dc.scat.kz
shopholidays.de
www.shopholidays.de
reservations.spacehotels.it
reservations.staypineapple.com
edgeapi-p4.synxis.com
google-p1.synxis.com
infrasvcs-p1.synxis.com
payments-p1.synxis.com
sbe-cms-api-c2.synxis.com
services-p1.synxis.com
*.synxis.com
voice-p1.synxis.com
voiceagent-p1.synxis.com
voiceagent-p4.synxis.com
reservations.theriverinn.com
reservations.thewindsorsuites.com
tccx-tfh.tripcase.com
checkin-cert.virginaustralia.com
checkin-stage.virginaustralia.com
checkin.virginaustralia.com
Other domains in certificate