Open
Cached
·
just now
92/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q4
Valid From
December 05, 2025
Valid Until
June 03, 2026
158 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5A:D6:5A:4F:2D:08:30:21:33:2E:54:5C:07:53:C3:2E:F5:11:7B:0F:50:A1:FE:69:20:96:89:B0:66:27:ED:29
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Basic
default-src; object-src; style-src; +5 more
default-src 'self' data:; object-src https://sta02prodvworldprod07020.blob.core.windows.net https://sta03prodvworldprod07020.blob.core.windows.net; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: https://cdnjs.cloudflare.com; connect-src 'self' blob: https://*.virtualspaces.pwc.com https://*.ext.virtualworld.stg.codemelter.pwc.de https://sta02prodvworldprod07020.blob.core.windows.net https://sta03prodvworldprod07020.blob.core.windows.net wss://rehs.virtualspaces.pwc.com https://*.gstatic.com wss://*.twilio.com https://*.twilio.com https://*.sentry.io https://login.pwc.com https://*.akamaized.net https://*.daserste.de https://*.pwc.de https://*.pwc.com https://*.blob.core.windows.net https://*.google.com https://*.youtube.com https://*.vimeo.com https://*.windows.net https://*.twitch.tv https://*.pwcinternal.com https://*.pwc.to https://*.video-stream-hosting.de rtmp://*.kaltura.com rtmp://*.mediacdn.com https://storage.googleapis.com https://gitlab.com;; frame-src *.blob.core.windows.net *.ext.virtualworld.stg.codemelter.pwc.de app.mural.co/ www.youtube.com pwc.talentry.com/ app.sli.do/ miro.com/ *.google.com/ *.vimeo.com/ *.office.com *.pwc.to *.pwc.de streaming.pwc.de *.pwc.com *.pwcplus.de *.pwcinternal.com *.pwcglb.com *.asana.com https://padlet.com https://*.padlet.com *.spotify.com *.akamaized.net *.twitch.tv *.linkedin.com *.xing.com *.ondemand.com *.myshn.net *.workfront.com *.myworkday.com *.kaltura.com *.atlassian.com *.atlassian.net *.sharepoint.com teams.microsoft.com playground.metus.de/; img-src 'self' data: blob: https://sta02prodvworldprod07020.blob.core.windows.net https://sta03prodvworldprod07020.blob.core.windows.net https://cdn.jsdelivr.net/npm/; media-src 'self' data: blob: https://sta02prodvworldprod07020.blob.core.windows.net https://sta03prodvworldprod07020.blob.core.windows.net https://*.akamaized.net https://*.daserste.de https://*.pwc.de https://*.pwc.com https://*.blob.core.windows.net https://*.google.com https://*.youtube.com https://*.vimeo.com;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Missing
Not configured
Recommendations
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
152 domains
*.pwc.com
dac6compliance.pwc.com
virtualspaces.pwc.com
*.ca.pwc.com
*.cyms.pwc.com
*.dci-uat-dfc5672bd30b472a9f9023e1175a9aaf.pwc.com
*.dev-smartbudget.pwc.com
*.docbot-stage.pwc.com
*.docbot.pwc.com
*.hosting.pwc.com
*.jp.pwc.com
*.lan.pwc.com
*.lite.pwc.com
*.lower-pwclabs.pwc.com
*.my.pwc.com
*.oic.pwc.com
*.pensionview.pwc.com
*.performplus.pwc.com
*.proedge.pwc.com
*.proposal.pwc.com
*.qa-smartbudget.pwc.com
*.readyassess.pwc.com
*.riskatlas.pwc.com
*.saratoga.pwc.com
*.sightline.pwc.com
*.staging.pwc.com
*.testenv.pwc.com
*.transferpricing.pwc.com
api.dac6compliance.pwc.com
reh.virtualspaces-stage.pwc.com
rehs.virtualspaces-stage.pwc.com
rehs.virtualspaces.pwc.com
rehshed.virtualspaces-stage.pwc.com
rehshed.virtualspaces.pwc.com
stage.dac6compliance.pwc.com
strapi.virtualspaces-stage.pwc.com
strapi.virtualspaces.pwc.com
*.adm.proedge.pwc.com
*.ai.transferpricing.pwc.com
*.aimaturityassessment.my.pwc.com
*.api.engagementcenter.pwc.com
*.api.sightline.pwc.com
*.be.supplierengagementintelligence.pwc.com
*.demo.enterprisecontrol.pwc.com
*.devhor.proedge.pwc.com
*.east.mx.pwc.com
*.einvoicing.pl.pwc.com
*.eu.indirecttaxedge.pwc.com
*.managedthreatintel.jp.pwc.com
*.marketplace.asiapacific.pwc.com
*.productcentral.products.pwc.com
*.productivitysuite.uk.pwc.com
*.qahor.proedge.pwc.com
*.staging.mer.pwc.com
*.west.mx.pwc.com
api.stage.dac6compliance.pwc.com
*.admin.managedthreatintel.jp.pwc.com
*.au.indirecttaxedge.itx.pwc.com
*.digitalworklife.stg.africa.pwc.com
*.marketplace.dev.asiapacific.pwc.com
*.ngc.stg.mx.pwc.com
*.webapi.digitaltraceability.jp.pwc.com
*.digitalworklife.api.stg.africa.pwc.com
*.east.ngc.stg.mx.pwc.com
*.west.ngc.stg.mx.pwc.com
cloudapistg.gr
*.cloudapistg.gr
cloudwebapiprd.gr
*.cloudwebapiprd.gr
*.einvoice.aw.navigatetax.pwc.co.in
*.pwc.com.cy
*.risksensor.pwc.com.tr
*.workforceinsights.pwc.com.tr
grant-manager.com
*.grant-manager.com
imperva.com
*.pwc.or.ke
*.pwc-tls.it
*.pwc.be
*.regulationascode.pwc.ch
*.clientidentificationportal.pwc.co.uk
*.clientidentificationportal.staging.pwc.co.uk
*.dealstechnology.pwc.co.uk
*.deepcommercialintelligence.authentication.pwc.co.uk
*.pwc.co.uk
*.staging.pwc.co.uk
*.api.datakit.pwc.com.au
*.cft.pwc.com.au
*.data.pwc.com.au
*.datakit.pwc.com.au
*.documentanalysis.pwc.com.au
*.pwc.com.au
*.agtechinnovation.pwc.com.br
*.pwc.cz
api.connectedscreeningservice.pwc.de
bhw-rechner-stage.pwc.de
connecteddigital.pwc.de
constructionhub.pwc.de
datafactory.pwc.de
digitalbusinesscompass.pwc.de
ediscovery.pwc.de
energyprocessbenchmarking.pwc.de
gaswaermepreisbremse.pwc.de
itcapabilitycompass.pwc.de
itcostefficiencymonitor.pwc.de
*.npenv.dealstechmanagedservices.pwc.de
outsystems.pwc.de
*.propertytaxapp.pwc.de
*.pwc.de
spk-rechner.pwc.de
tas-api.pwc.de
tas.pwc.de
timemanager.pwc.de
transfer.pwc.de
tubes.pwc.de
vatidlookup.pwc.de
*.pwc.dk
*.bat.pwc.es
*.pwc.es
*.pwc.fi
*.accountingpolicymanual.pwc.in
*.fivegassessment.pwc.in
*.integratededucation.pwc.in
*.pwc.in
*.stage.pwc.in
*.staging.pwc.in
*.doc-interact-backend-test.pwc.it
*.piattaformaitalia.pwc.it
*.pwc.it
*.storage.digital-document-platform.pwc.it
*.test.storage.digital-document-platform.pwc.it
pwc.li
*.pwc.li
*.tax.pwc.mx
*.interactiveriskmanagement.pwc.nl
*.pwc.pe
*.lovisa.hrtoolkit.pwc.pl
*.pwc.pl
*.tts.pwc.pl
*.pwc.pt
*.pwc.ro
*.pwc.se
*.cfoinsight.pwc.tw
pwcplus-app.stage-cloud.pwcplus.de
pwcplus-blog.stage-cloud.pwcplus.de
pwcplus-webdav.stage-cloud.pwcplus.de
stage-cloud.pwcplus.de
*.pwcrelativity.com
surfaceink.com
*.surfaceink.com
threatintel.io
*.threatintel.io
Other domains in certificate