Secure Sockets Layer (SSL) and Transport Layer Security (TLS)
SSL and TLS are cryptographic protocols that provide communications security over a computer network. SSL is a broken protocol and should NOT be used in modern secure environments. The TLS protocol provides you privacy and data integrity between your browser and the server you are connecting. By using TLS, all data between your browser and the server travels over the Internet in an encrypted state, and nobody can access or modify it. However, a poorly configured SSL / TLS server that uses any broken protocol, broken key exchange or broken encryption can give access to that data. The TLS report we provide helps you tune-up your server to modern security requirements, and detect issues in your server configuration. We analyse the SSL/TLS protocols used by server, NPN, ALPN, perfect forward secrecy (PFS), used elliptic curves, TLS extensions, server certificates, certificate transparency, supported ciphers and their strength, browser simulations and many more. We also scan your server for some known SSL/TLS vulnerabilities, such as Heartbleed, CCS, Ticketbleed, ROBOT, CRIME, BREACH, POODLE, TLS_FALLBACK_SCSV, SWEET32, FREAK, DROWN, LOGJAM, BEAST, LUCKY13 etc.