Open
Cached
·
just now
88/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q4
Valid From
December 16, 2025
Valid Until
June 14, 2026
179 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
DA:8C:E2:4E:76:59:E5:64:74:6D:2A:2A:67:FA:49:02:D9:41:8B:AD:8C:E2:67:F8:38:B6:FB:19:0E:B6:45:2A
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Good
default-src; connect-src; font-src; +6 more
default-src 'none'; connect-src 'self' https://learnerapi-3.learninglab.pwc.com https://tenantapi-3.learninglab.pwc.com https://platformapi-1.learninglab.pwc.com https://uk.learninglab.pwc.com/course-content; font-src 'self'; frame-src 'self' https://login.pwc.com https://video.pwc.com; img-src 'self' data: https://uk.learninglab.pwc.com/course-content; script-src 'self'; style-src 'self' 'unsafe-inline'; frame-ancestors 'self'; manifest-src 'self'
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Strengthen CSP by removing 'unsafe-eval'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
151 domains
*.pwc.com
*.apphub.pwc.com
*.assettelemetrystaging.pwc.com
*.ca.pwc.com
*.companydataportal.pwc.com
*.connect-qa.pwc.com
*.connect-stage.pwc.com
*.connect.pwc.com
*.cryptorewards.pwc.com
*.dynamictestingsox.pwc.com
*.ia.pwc.com
*.in.pwc.com
*.innovationcatalog.pwc.com
*.itxgbl.pwc.com
*.lan.pwc.com
*.mer.pwc.com
*.my.pwc.com
*.performplus.pwc.com
*.ph.pwc.com
*.pilot.pwc.com
*.products.pwc.com
*.proposal.pwc.com
*.stage.pwc.com
*.stg.pwc.com
*.taxsummaries-tp.pwc.com
*.test.pwc.com
*.transferpricing.pwc.com
apps.mymobilityhq-dr.pwc.com
apps.mymobilityhq-test.pwc.com
au-api.connect-stage.pwc.com
au.connect-stage.pwc.com
central.connect-stage.pwc.com
central.connect.pwc.com
che-api.connect-stage.pwc.com
che-api.connect.pwc.com
che.connect-stage.pwc.com
che.connect.pwc.com
east.connect-stage.pwc.com
east.connect.pwc.com
essentials.transferpricing.pwc.com
ghc.connect-stage.pwc.com
ghc.connect.pwc.com
ghe.connect-stage.pwc.com
ghe.connect.pwc.com
ghw.connect-stage.pwc.com
ghw.connect.pwc.com
learnerapi-3.learninglab.pwc.com
search.companydataportal.pwc.com
staging.cryptorewards.pwc.com
stg-learnerapi-3.learninglab.pwc.com
stg-tenantapi-3.learninglab.pwc.com
stg-uk.learninglab.pwc.com
tenantapi-3.learninglab.pwc.com
uk.learninglab.pwc.com
west-cloud.connect.pwc.com
west.connect-stage.pwc.com
west.connect.pwc.com
*.api.engagementhub.pwc.com
*.cdn.engagementhub.pwc.com
*.intg.ngc.pwc.com
*.leadyou.co.pwc.com
*.qa.connectedriskengine.pwc.com
*.riskinterceptor.jp.pwc.com
*.stage.nextgencloud.pwc.com
*.staging.my.pwc.com
*.stg.ngc.pwc.com
api.staging.cryptorewards.pwc.com
stg.essentials.transferpricing.pwc.com
stg.search.companydataportal.pwc.com
*.api.qa.connectedriskengine.pwc.com
*.test.edge.itx.pwc.com
*.web.qa.connectedriskengine.pwc.com
*.hana-avtr.prod.ei.hosting.pwc.com
*.001.ibrows.ch
*.einvoice.az.navigatetax.pwc.co.in
ms.einvoice.az.navigatetax.pwc.co.in
*.ms.einvoice.az.navigatetax.pwc.co.in
navigatetax.pwc.co.in
*.pwc.co.in
*.pwc.com.ph
*.pwc.com.uy
esbesopmarket.ie
www.esbesopmarket.ie
*.gestiongrip.com
ideationcenter.com
www.ideationcenter.com
imperva.com
independentroundupsettlementprogram.com
*.independentroundupsettlementprogram.com
lineaetica.pe
www.lineaetica.pe
pwc-spark.com
uat.pwc-spark.com
www.pwc-spark.com
*.pwc-tls.it
*.pwc.at
*.pwc.be
*.pwc.ch
*.uat.pwc.co.nz
*.dealstechnology.pwc.co.uk
*.dev.pwc.co.uk
*.internal.pwc.co.uk
*.pwc.co.uk
*.stage.ariasmbc.pwc.co.uk
*.stage.pwc.co.uk
*.stg.pwc.co.uk
api.datacapture.pwc.com.au
api.dev.datacapture.pwc.com.au
api.perspectives.pwc.com.au
*.api.pwc.com.au
api.sense-dev.pwc.com.au
*.cft.pwc.com.au
contacttracing.pwc.com.au
datacapture.pwc.com.au
*.datakit.pwc.com.au
*.dev.cft.pwc.com.au
dev.datacapture.pwc.com.au
int.datacapture.pwc.com.au
int.dev.datacapture.pwc.com.au
mobile.perspectives.pwc.com.au
mobile.sense-dev.pwc.com.au
perspectives-stg.pwc.com.au
perspectives.pwc.com.au
*.protect.pwc.com.au
pulse.pwc.com.au
*.pwc.com.au
sense-dev.pwc.com.au
*.integration-platform.apps.pwc.com.br
*.rotacaodefundos.pwc.com.br
*.integratededucation.pwc.in
pwc.in
*.pwc.in
*.stage.hycs.pwc.in
*.pwc.it
*.stage.hycs.pwc.it
*.pwc.mx
*.tax.pwc.mx
pwc.nl
*.pwc.nl
*.helpdesk.pwc.pl
*.hrportal.tts.pwc.pl
*.ssb01.tts.pwc.pl
*.digitalmaker.pwchk.com
pwchk.com
*.pwchk.com
*.pwcipower.com
regionalfutureofwork.com
www.regionalfutureofwork.com
stgesbesopmarket.ie
www.stgesbesopmarket.ie
*.talneta.nl
Other domains in certificate