Open
Cached
·
just now
86/100
SECURITY SCORE
Certificate Information
Subject
CN=imperva.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q4
Valid From
November 19, 2025
Valid Until
May 18, 2026
157 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
4B:6F:73:CE:A1:06:E4:31:DF:E5:DB:82:6E:AD:F8:F8:FF:58:E4:E7:B0:29:37:81:36:82:82:CC:7F:AB:27:02
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Basic
default-src; font-src; script-src; +5 more
default-src 'self' https:; font-src 'self' data: https:; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: 'unsafe-inline'; img-src 'self' https: data:; media-src * blob: https: data:; worker-src * blob: https: data:;frame-ancestors 'self' https://*.pwc.com https://*.pwcinternal.com
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
154 domains
*.pwc.com
datalink.pwc.com
inform.pwc.com
legalregulatoryradar.pwc.com
signalgraph.pwc.com
taxsummaries.pwc.com
*.co.pwc.com
*.connectiontest.pwc.com
*.cyberarena.pwc.com
*.globalcustomsonline.pwc.com
*.info.pwc.com
*.jp.pwc.com
*.kti.pwc.com
*.learninglab.pwc.com
*.mt.pwc.com
*.mu.pwc.com
*.my.pwc.com
*.performplus.pwc.com
*.ph.pwc.com
*.products.pwc.com
*.py.pwc.com
*.smartbudget.pwc.com
*.stage.pwc.com
*.staging-verificationservices.pwc.com
*.stg.pwc.com
*.us.pwc.com
*.verificationservices.pwc.com
admin.legalregulatoryradar.pwc.com
api.datalink.pwc.com
app.learninglab.pwc.com
author.hq-stg.pwc.com
author.hq.pwc.com
bo.thesuite.pwc.com
digitalagri.jp.pwc.com
intelligentbusinessanalytics.jp.pwc.com
internal-dashboard.insightsofficer.pwc.com
learnerapi-1.learninglab.pwc.com
learnerapi-2.learninglab.pwc.com
learnerapi-3.learninglab.pwc.com
platform.learninglab.pwc.com
platformapi-1.learninglab.pwc.com
providerfootprintrationalization.strategyand.pwc.com
stg-app.learninglab.pwc.com
stg-learnerapi-2.learninglab.pwc.com
stg-tenantapi-2.learninglab.pwc.com
stg-tenantapi-3.learninglab.pwc.com
stg-uk.learninglab.pwc.com
tenantapi-1.learninglab.pwc.com
tenantapi-2.learninglab.pwc.com
tenantapi-3.learninglab.pwc.com
uk.learninglab.pwc.com
www.stgwwtaxsummaries.pwc.com
www.suite.pwc.com
www.taxsummaries.pwc.com
www.thesuite.pwc.com
www.ts.pwc.com
*.dev.drip.pwc.com
*.estatutocontable.co.pwc.com
*.itx.dataignition.pwc.com
*.lupa.co.pwc.com
*.qa.drip.pwc.com
*.renta.co.pwc.com
*.soxtestfactory.dev.pwc.com
*.staging.vn.pwc.com
*.taxaccounting.co.pwc.com
*.taxfunction.co.pwc.com
api.digitalagri.jp.pwc.com
www.dev.cyberarena.pwc.com
*.admin.supportdev.connectedriskengine.pwc.com
*.admin.supportqa.connectedriskengine.pwc.com
*.api.supportdev.connectedriskengine.pwc.com
*.api.supportqa.connectedriskengine.pwc.com
*.keycloak.supportqa.connectedriskengine.pwc.com
*.test.edge.itx.pwc.com
*.web.supportdev.connectedriskengine.pwc.com
*.web.supportqa.connectedriskengine.pwc.com
*.bestoption.com.mx
*.pwc.com.mu
pwc.com.na
taxtim.pwc.com.na
www.pwc.com.na
staging.consilium.health
*.gestiongrip.com
hersheysdiligence.com
*.hersheysdiligence.com
ideationcenter.com
www.ideationcenter.com
imperva.com
mydisclosure.com
*.mydisclosure.com
mypayroll.gr
www.mypayroll.gr
*.originanalysis.com
*.pwc.at
*.electronicstamp.pwc.be
*.pwc.be
*.dev.pwc.ch
*.pwc.ch
*.stage.pwc.ch
clientspaces.pwc.co.uk
*.dev.internal.pwc.co.uk
*.dev.pwc.co.uk
*.internal.pwc.co.uk
*.protect.pwc.co.uk
*.pwc.co.uk
*.test.pwc.co.uk
*.pwc.co.za
pwc.fi
*.pwc.fi
pwc.ie
*.pwc.ie
*.pwc.it
*.rewardplatform.pwc.it
*.pwc.lu
*.pwc.nl
*.cybersec.pwc.pl
dev.helpdesk.tts.pwc.pl
dwh.exportintelligencereportingtool.pwc.pl
*.enforce.pwc.pl
eportal.pwc.pl
helpdesk.tts.pwc.pl
hrportal.tts.pwc.pl
*.hrportal.tts.pwc.pl
*.pwc.pl
ssbt.tts.pwc.pl
test.eportal.pwc.pl
test.hrportal.tts.pwc.pl
test.ssbt.tts.pwc.pl
tools.exportintelligencereportingtool.pwc.pl
*.tts.pwc.pl
events.pwc.se
kunddelning-fn.pwc.se
kunddelning-service.pwc.se
kunddelning-stage.pwc.se
kunddelning.pwc.se
pwc.se
*.pwc.se
*.pwc.ua
pwcbenchmarking.com
*.pwcbenchmarking.com
pwcclientroom.com
www.pwcclientroom.com
*.pwcipower.com
*.stgyourpwcteam.com
strategythatworks.com
*.strategythatworks.com
thenewequation.com
*.thenewequation.com
thenewequation.net
*.thenewequation.net
stg.thesandbox.ie
thesandbox.ie
www.thesandbox.ie
*.yourpwcteam.com
Other domains in certificate