SSL Certificate Analysis for sparkforhome.com - Security Grade & TLS Configuration

Certificate Information

Subject

C=US, ST=Arkansas, L=Bentonville, O=Walmart Inc., CN=microsites-prod.walmart.com

Issuer

C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018

Valid From

March 07, 2025

Valid Until

April 08, 2026 117 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

29:A7:BF:97:B2:A4:C8:03:97:F4:85:CC:7A:8D:4B:0D:1F:CC:00:AF:6E:77:1C:2F:ED:62:F6:AB:57:9A:44:12

Alternative Names

42 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Configured (Restricts certificate issuance)

Current Issuer

Authorized (Matches CAA policy)

Authorized CAs

globalsign.com

Recommendations

• Consider using critical flag (flags=128) for stricter CAA enforcement
• Consider adding 'iodef' records to receive notifications about unauthorized certificate issuance attempts
• Consider adding 'issuewild' records to control wildcard certificate issuance

Subject Alternative Names

42 domains

sparkforhome.com

Other domains in certificate

homesparkjournal.com

modrn.com www.modrn.com

www.mylifeasdolls.com

sparkofhome.com

www.walmart-content.com

api.mobile.walmart.com bulkgiftcards.walmart.com coupons.walmart.com fonts.walmart.com giftcards.walmart.com grocery.walmart.com health.walmart.com help.walmart.com instoresnow.walmart.com learn.walmart.com microsites-prod.walmart.com mystore.walmart.com photos.walmart.com prod-microsites.walmart.com quimby.mobile.walmart.com wallet.walmart.com weeklyads.walmart.com wm12.walmart.com wm13.walmart.com wm14.walmart.com wm15.walmart.com wm16.walmart.com wm17.walmart.com wm18.walmart.com wm19.walmart.com wm3.walmart.com wm5.walmart.com wm7.walmart.com www.health.walmart.com www.wm12.walmart.com www.wm13.walmart.com www.wm15.walmart.com

www-ext.walmartimages.com

walmartplus.com www.walmartplus.com