Přihlásit se Registrace
Smlouvy Dotace Platy Úřady Zakázky Sponzoři & firmy PastVina 
❤ Podpořte nás Přihlásit se Registrace
Hledat v Hlídači státu
Nápověda jak vyhledávat Snadné hledání
  1. Hlídač Státu
  2. Hlídač Webů
  3. Detailní analýza HTTPs pro Informační systém stavebního řízení

Hlídač Informační systém stavebního řízení Detailní analýza HTTPs pro Informační systém stavebního řízení

Informační systém stavebního řízení
https://ais.stavebnisprava.gov.cz

Ministerstvo pro místní rozvoj Portál digitálního stavebního řízení určený pro úředníky

Zabezpečení komunikace

A+
Certifikát expiruje za 9 dní.

Výsledek analýzy HTTPS na ais.stavebnisprava.gov.cz ze dne 17.06.2026

Všechno je v nejlepším pořádku a web se drží doporučených postupů.

Detailní analýza

Detailní report z HTTPs analýzy pomocí nástroje testssl.sh

server ais.stavebnisprava.gov.cz/94.199.45.184
pre_128cipher INFO { 
No 128 cipher limit bug
}
SSLv2 OK { 
not offered
}
SSLv3 OK { 
not offered
}
TLS1 INFO { 
not offered
}
TLS1_1 INFO { 
not offered
}
TLS1_2 OK { 
offered
}
TLS1_3 OK { 
offered with final
}
NPN INFO { 
not offered
}
ALPN INFO { 
not offered
}
cipherlist_NULL
zranitelnosti: CWE-327
OK { 
not offered
}
cipherlist_aNULL
zranitelnosti: CWE-327
OK { 
not offered
}
cipherlist_EXPORT
zranitelnosti: CWE-327
OK { 
not offered
}
cipherlist_LOW
zranitelnosti: CWE-327
OK { 
not offered
}
cipherlist_3DES_IDEA
zranitelnosti: CWE-310
INFO { 
not offered
}
cipherlist_AVERAGE
zranitelnosti: CWE-310
INFO { 
not offered
}
cipherlist_GOOD OK { 
offered
}
cipherlist_STRONG OK { 
offered
}
cipher_order OK { 
server
}
protocol_negotiated OK { 
Default protocol TLS1.3
}
cipher_negotiated OK { 
TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519)
}
cipher-tls1_2_xc030 OK { 
TLSv1.2   xc030   ECDHE-RSA-AES256-GCM-SHA384       ECDH 256   AESGCM      256      TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
}
cipher-tls1_2_x9f OK { 
TLSv1.2   x9f     DHE-RSA-AES256-GCM-SHA384         DH 2048    AESGCM      256      TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
}
cipher-tls1_2_x9d OK { 
TLSv1.2   x9d     AES256-GCM-SHA384                 RSA        AESGCM      256      TLS_RSA_WITH_AES_256_GCM_SHA384
}
cipher-tls1_2_xc02f OK { 
TLSv1.2   xc02f   ECDHE-RSA-AES128-GCM-SHA256       ECDH 256   AESGCM      128      TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
}
cipher-tls1_2_x9e OK { 
TLSv1.2   x9e     DHE-RSA-AES128-GCM-SHA256         DH 2048    AESGCM      128      TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
}
cipher-tls1_2_x9c OK { 
TLSv1.2   x9c     AES128-GCM-SHA256                 RSA        AESGCM      128      TLS_RSA_WITH_AES_128_GCM_SHA256
}
cipherorder_TLSv1_2 INFO { 
ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256 AES128-GCM-SHA256
}
cipher-tls1_3_x1302 OK { 
TLSv1.3   x1302   TLS_AES_256_GCM_SHA384            ECDH 253   AESGCM      256      TLS_AES_256_GCM_SHA384
}
cipher-tls1_3_x1301 OK { 
TLSv1.3   x1301   TLS_AES_128_GCM_SHA256            ECDH 253   AESGCM      128      TLS_AES_128_GCM_SHA256
}
cipher-tls1_3_x1303 OK { 
TLSv1.3   x1303   TLS_CHACHA20_POLY1305_SHA256      ECDH 253   ChaCha20    256      TLS_CHACHA20_POLY1305_SHA256
}
cipherorder_TLSv1_3 INFO { 
TLS_AES_256_GCM_SHA384 TLS_AES_128_GCM_SHA256 TLS_CHACHA20_POLY1305_SHA256
}
prioritize_chacha_TLSv1_3 INFO { 
false
}
FS OK { 
offered
}
FS_ciphers INFO { 
TLS_AES_256_GCM_SHA384 TLS_CHACHA20_POLY1305_SHA256 ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 TLS_AES_128_GCM_SHA256 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256
}
FS_ECDHE_curves OK { 
prime256v1 secp384r1 secp521r1 X25519 X448
}
DH_groups OK { 
ffdhe2048 ffdhe3072 ffdhe4096 ffdhe6144 ffdhe8192
}
TLS_extensions INFO { 
'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'extended master secret/#23'
}
TLS_session_ticket INFO { 
valid for 300 seconds only (<daily)
}
SSL_sessionID_support INFO { 
yes
}
sessionresumption_ticket INFO { 
supported
}
sessionresumption_ID INFO { 
supported
}
TLS_timestamp INFO { 
random
}
certificate_compression INFO { 
none
}
clientAuth INFO { 
none
}
cert_numbers INFO { 
1
}
cert_signatureAlgorithm OK { 
SHA256 with RSA
}
cert_keySize OK { 
RSA 4096 bits (exponent is 65537)
}
cert_keyUsage INFO { 
Digital Signature, Key Encipherment
}
cert_extKeyUsage INFO { 
TLS Web Server Authentication, TLS Web Client Authentication
}
cert_serialNumber INFO { 
05A49A0A7C40E08A4BB1904CA39ED6CC
}
cert_serialNumberLen INFO { 
16
}
cert_fingerprintSHA1 INFO { 
861037A4B3A3C1A6A9A7892EF544D26F77C44464
}
cert_fingerprintSHA256 INFO { 
70C2B9B25C8CD09A8A2A6E361FFBAA6ED2B887A8B0DB4F881045D86C64051B75
}
cert INFO { 
-----BEGIN CERTIFICATE----- MIII9DCCB9ygAwIBAgIQBaSaCnxA4IpLsZBMo57WzDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZHZW9UcnVzdCBUTFMgUlNBIENBIEcx MB4XDTI1MDYxODAwMDAwMFoXDTI2MDYyNzIzNTk1OVowIjEgMB4GA1UEAwwXKi5z dGF2ZWJuaXNwcmF2YS5nb3YuY3owggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQC39n2lUR2gE15srObJAaYwszFXZzwf253qJNUJOfmxWGjznF1cNDird4aM oLe3fkUcsDoWYoz9gbl/MQ5aYX9ATxwxnHy1HuzGFIMQ+HOfusyNm2g1KDumcQMf TftZhGTAjTUQn5EhE0dq1e65g95VgAsLIeCR0Avp1Ys60fuOAq007QXomvXoNPmg auoL2g4y+4P5wkA+mD7xgMPBl7WhDDwtcN2jF7xm36WEBkgWtNne3H7q2vBvpK4W bwm4B/e2gPTgf2c+wO6Mxs59ohSixaAluFxWztbtB5pNBHziHrmCrWZm+3/+SGCn /9dKDjXiXSeAdTzybtMX1y8/1ME6ZSU9dwxTmdSv8Y5/M2wG3ZQqYDiVVZT2FRdr KxbqPQ5zH3cwlI6JSFnJw75yJqIdoUkCDLz3Eu55aVKaRjY4+5zOpaPkqYkqd9ia gZwKXbVOuK+6x8wW4w2scjTKH5V7YmoYiHSAqQSTnx3s6f/VdGMHg2JABtpFjp5j 4smaKEjImehorv51kXc1QuJJYUQ/r8BLwol/g/p2cMHLbG/xRy2tA5tItJi4Oh2h eg7+ICUDkTOLqoN1/4xQKqneh0+7Q0B70l2rfIQa1zleSJ0pYWmFGY89pF2wO2Tc wWQUz7iCp7iYtVY4ozw75jEhKDiEYaCOsGgDZwuolzX6AFlq+wIDAQABo4IE5jCC BOIwHwYDVR0jBBgwFoAUlE/UXYvkpOKmgP792PkA76O+AlcwHQYDVR0OBBYEFOWZ rsF8hk8Pg6rjo1M/2NhXTiQZMIIB6AYDVR0RBIIB3zCCAduCFyouc3RhdmVibmlz cHJhdmEuZ292LmN6ghlhaXMuc3RhdmVibmlzcHJhdmEuZ292LmN6gh1hcGkuYWlz LnN0YXZlYm5pc3ByYXZhLmdvdi5jeoIdYXBpLmR1ZC5zdGF2ZWJuaXNwcmF2YS5n b3YuY3qCHmFwaS5lYW9zLnN0YXZlYm5pc3ByYXZhLmdvdi5jeoIdYXBpLmljcy5z dGF2ZWJuaXNwcmF2YS5nb3YuY3qCHGFwaS5rby5zdGF2ZWJuaXNwcmF2YS5nb3Yu Y3qCHWFwaS5rdWQuc3RhdmVibmlzcHJhdmEuZ292LmN6gh5hcGkudGlkaS5zdGF2 ZWJuaXNwcmF2YS5nb3YuY3qCImF0dGNoLnBvcnRhbC5zdGF2ZWJuaXNwcmF2YS5n b3YuY3qCGWR1ZC5zdGF2ZWJuaXNwcmF2YS5nb3YuY3qCGmVhb3Muc3RhdmVibmlz cHJhdmEuZ292LmN6ghlrdWQuc3RhdmVibmlzcHJhdmEuZ292LmN6ghxwb3J0YWwu c3RhdmVibmlzcHJhdmEuZ292LmN6ghVzdGF2ZWJuaXNwcmF2YS5nb3YuY3qCIHZ6 ZGVsYXZhbmkuc3RhdmVibmlzcHJhdmEuZ292LmN6MD4GA1UdIAQ3MDUwMwYGZ4EM AQIBMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMD8G A1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9jZHAuZ2VvdHJ1c3QuY29tL0dlb1RydXN0 VExTUlNBQ0FHMS5jcmwwdgYIKwYBBQUHAQEEajBoMCYGCCsGAQUFBzABhhpodHRw Oi8vc3RhdHVzLmdlb3RydXN0LmNvbTA+BggrBgEFBQcwAoYyaHR0cDovL2NhY2Vy dHMuZ2VvdHJ1c3QuY29tL0dlb1RydXN0VExTUlNBQ0FHMS5jcnQwDAYDVR0TAQH/ BAIwADCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUADleUvPOuqT4zGyyZB7P3 kN+bwj1xMiXdIaklrGHFTiEAAAGXgqc5FwAABAMARjBEAiBOK8dyhKZ+bnvhDTwy Q/iRTsyG+vkeM2RT4JDYYrzxZgIgRSXcKi53MhNo6ITrn5AedBuqx3FG6eN1WuQ2 Y3CpNGUAdgBkEcRspBLsp4kcogIuALyrTygH1B41J6vq/tUDyX3N8AAAAZeCpzkm AAAEAwBHMEUCIHPCIA/u27a3bohw4iC3gmJOadvfYMPSaDFcq3+46KDFAiEA2mgh x5S1RQJsTXirNaqrjgQqLIwsXEhxRZ17YO9IHGwAdQBJnJtp3h187Pw23s2HZKa4 W68Kh4AZ0VVS++nrKd34wwAAAZeCpzlCAAAEAwBGMEQCIEuP4XA0sgBrT4lmvN75 m2rXnVCx9F7dR3byVy6KgrWCAiBufXv3RWcA0h2mJ/JFI9th+Sc4ZwCMTwIUfWdq l7dnQzANBgkqhkiG9w0BAQsFAAOCAQEADmhdQRynMc/6/7x/qarisbS3BHunRLu/ OCDCCcPSDmUPQeZFdaoy7JMetKwOPWNeEw5JUXjgS8c6dAzW6yh6gw9Et3Dc6fXD QT1g/BaqXS779iMushSquArBr/1a64U1OeBLt4jlDMvT/tWDjMOIUrWlniBZyVrZ OHZBN1CUlw1NkuO2jwvOqVDf5gFxDjlH+Vv3+euNsgE6iCKvLaDNfCfKumjrIqD7 Pu2vbeZciDlPORJl389VdmIFBsVtP4t+Pkr7f1e0x/Gk6eGH9FznwRzTeS8JciBt ja6WlFPAaNDprldkcHp33CONXZxddfJskt3MRhd9kXQgt8uMnxg+lQ== -----END CERTIFICATE-----
}
cert_commonName OK { 
*.stavebnisprava.gov.cz
}
cert_commonName_wo_SNI INFO { 
*.stavebnisprava.gov.cz
}
cert_subjectAltName INFO { 
*.stavebnisprava.gov.cz ais.stavebnisprava.gov.cz api.ais.stavebnisprava.gov.cz api.dud.stavebnisprava.gov.cz api.eaos.stavebnisprava.gov.cz api.ics.stavebnisprava.gov.cz api.ko.stavebnisprava.gov.cz api.kud.stavebnisprava.gov.cz api.tidi.stavebnisprava.gov.cz attch.portal.stavebnisprava.gov.cz dud.stavebnisprava.gov.cz eaos.stavebnisprava.gov.cz kud.stavebnisprava.gov.cz portal.stavebnisprava.gov.cz stavebnisprava.gov.cz vzdelavani.stavebnisprava.gov.cz
}
cert_trust OK { 
Ok via CN wildcard and SAN (same w/o SNI)
}
cert_chain_of_trust OK { 
passed.
}
cert_certificatePolicies_EV INFO { 
no
}
cert_expirationStatus HIGH { 
expires < 30 days (10)
}
cert_notBefore INFO { 
2025-06-18 00:00
}
cert_notAfter HIGH { 
2026-06-27 23:59
}
cert_extlifeSpan OK { 
certificate has no extended life time according to browser forum
}
cert_eTLS INFO { 
not present
}
cert_crlDistributionPoints INFO { 
http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
}
cert_ocspURL INFO { 
http://status.geotrust.com
}
OCSP_stapling LOW { 
not offered
}
cert_mustStapleExtension INFO { 
--
}
DNS_CAArecord OK { 
issuewild=;
}
certificate_transparency OK { 
yes (certificate extension)
}
certs_countServer INFO { 
2
}
certs_list_ordering_problem INFO { 
no
}
cert_caIssuers INFO { 
GeoTrust TLS RSA CA G1 (DigiCert Inc from US)
}
intermediate_cert <#1> INFO { 
-----BEGIN CERTIFICATE----- MIIEjTCCA3WgAwIBAgIQDQd4KhM/xvmlcpbhMf/ReTANBgkqhkiG9w0BAQsFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBH MjAeFw0xNzExMDIxMjIzMzdaFw0yNzExMDIxMjIzMzdaMGAxCzAJBgNVBAYTAlVT MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xHzAdBgNVBAMTFkdlb1RydXN0IFRMUyBSU0EgQ0EgRzEwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC+F+jsvikKy/65LWEx/TMkCDIuWegh1Ngwvm4Q yISgP7oU5d79eoySG3vOhC3w/3jEMuipoH1fBtp7m0tTpsYbAhch4XA7rfuD6whU gajeErLVxoiWMPkC/DnUvbgi74BJmdBiuGHQSd7LwsuXpTEGG9fYXcbTVN5SATYq DfbexbYxTMwVJWoVb6lrBEgM3gBBqiiAiy800xu1Nq07JdCIQkBsNpFtZbIZhsDS fzlGWP4wEmBQ3O67c+ZXkFr2DcrXBEtHam80Gp2SNhou2U5U7UesDL/xgLK6/0d7 6TnEVMSUVJkZ8VeZr+IUIlvoLrtjLbqugb0T3OYXW+CQU0kBAgMBAAGjggFAMIIB PDAdBgNVHQ4EFgQUlE/UXYvkpOKmgP792PkA76O+AlcwHwYDVR0jBBgwFoAUTiJU IBiV5uNu5g/6+rkS7QYXjzkwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMDQGCCsGAQUFBwEB BCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEIGA1Ud HwQ7MDkwN6A1oDOGMWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEds b2JhbFJvb3RHMi5jcmwwPQYDVR0gBDYwNDAyBgRVHSAAMCowKAYIKwYBBQUHAgEW HGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDQYJKoZIhvcNAQELBQADggEB AIIcBDqC6cWpyGUSXAjjAcYwsK4iiGF7KweG97i1RJz1kwZhRoo6orU1JtBYnjzB c4+/sXmnHJk3mlPyL1xuIAt9sMeC7+vreRIF5wFBC0MCN5sbHwhNN1JzKbifNeP5 ozpZdQFmkCo+neBiKR6HqIA+LMTMCMMuv2khGGuPHmtDze4GmEGZtYLyF8EQpa5Y jPuV6k2Cr/N3XxFpT3hRpt/3usU/Zb9wfKPtWpoznZ4/44c1p9rzFcZYrWkj3A+7 TNBJE0GmP2fhXhP1D/XVfIW/h0yCJGEiV9Glm/uGOa3DXHlmbAcxSyCRraG+ZBkA 7h4SeM6Y8l/7MBRpPCz6l8Y= -----END CERTIFICATE-----
}
intermediate_cert_fingerprintSHA256 <#1> INFO { 
C06E307F7CFC1D32FA72A4C033C87B90019AF216F0775D64978A2ECA6C8A230E
}
intermediate_cert_notBefore <#1> INFO { 
2017-11-02 12:23
}
intermediate_cert_notAfter <#1> OK { 
2027-11-02 12:23
}
intermediate_cert_expiration <#1> OK { 
ok > 40 days
}
intermediate_cert_chain <#1> INFO { 
GeoTrust TLS RSA CA G1 <-- DigiCert Global Root G2
}
intermediate_cert_badOCSP OK { 
intermediate certificate(s) is/are ok
}
HTTP_status_code INFO { 
200 OK ('/')
}
HTTP_clock_skew INFO { 
0 seconds from localtime
}
HTTP_headerTime INFO { 
1781729232
}
HSTS_time OK { 
365 days (=31536000 seconds) > 15552000 seconds
}
HSTS_subdomains OK { 
includes subdomains
}
HSTS_preload INFO { 
domain is NOT marked for preloading
}
HPKP INFO { 
No support for HTTP Public Key Pinning
}
banner_server INFO { 
Apache
}
banner_application INFO { 
No application banner found
}
cookie_count INFO { 
0 at '/'
}
X-Frame-Options OK { 
SAMEORIGIN
}
X-Content-Type-Options OK { 
nosniff
}
Permissions-Policy OK { 
geolocation=(), microphone=()
}
X-XSS-Protection INFO { 
1; mode=block
}
Referrer-Policy INFO { 
no-referrer
}
Cache-Control INFO { 
max-age=0, no-cache, no-store, must-revalidate
}
Pragma INFO { 
no-cache
}
banner_reverseproxy
zranitelnosti: CWE-200
INFO { 
--
}
heartbleed
zranitelnosti: CVE-2014-0160 CWE-119
OK { 
not vulnerable, no heartbeat extension
}
CCS
zranitelnosti: CVE-2014-0224 CWE-310
OK { 
not vulnerable
}
ticketbleed
zranitelnosti: CVE-2016-9244 CWE-200
OK { 
not vulnerable
}
ROBOT
zranitelnosti: CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168 CWE-203
OK { 
not vulnerable
}
secure_renego
zranitelnosti: CWE-310
OK { 
supported
}
secure_client_renego
zranitelnosti: CVE-2011-1473 CWE-310
OK { 
not vulnerable
}
CRIME_TLS
zranitelnosti: CVE-2012-4929 CWE-310
OK { 
not vulnerable
}
BREACH
zranitelnosti: CVE-2013-3587 CWE-310
OK { 
not vulnerable, no gzip/deflate/compress/br HTTP compression  - only supplied '/' tested
}
POODLE_SSL
zranitelnosti: CVE-2014-3566 CWE-310
OK { 
not vulnerable, no SSLv3
}
fallback_SCSV OK { 
no protocol below TLS 1.2 offered
}
SWEET32
zranitelnosti: CVE-2016-2183 CVE-2016-6329 CWE-327
OK { 
not vulnerable
}
FREAK
zranitelnosti: CVE-2015-0204 CWE-310
OK { 
not vulnerable
}
DROWN
zranitelnosti: CVE-2016-0800 CVE-2016-0703 CWE-310
OK { 
not vulnerable on this host and port
}
DROWN_hint
zranitelnosti: CVE-2016-0800 CVE-2016-0703 CWE-310
INFO { 
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=70C2B9B25C8CD09A8A2A6E361FFBAA6ED2B887A8B0DB4F881045D86C64051B75
}
LOGJAM-common_primes
zranitelnosti: CVE-2015-4000 CWE-310
INFO { 
HAProxy
}
LOGJAM
zranitelnosti: CVE-2015-4000 CWE-310
OK { 
not vulnerable, no DH EXPORT ciphers,
}
BEAST
zranitelnosti: CVE-2011-3389 CWE-20
OK { 
not vulnerable, no SSL3 or TLS1
}
LUCKY13
zranitelnosti: CVE-2013-0169 CWE-310
OK { 
not vulnerable
}
winshock
zranitelnosti: CVE-2014-6321 CWE-94
OK { 
not vulnerable
}
RC4
zranitelnosti: CVE-2013-2566 CVE-2015-2808 CWE-310
OK { 
not vulnerable
}
clientsimulation-android_442 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-android_500 INFO { 
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
}
clientsimulation-android_60 INFO { 
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
}
clientsimulation-android_70 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-android_81 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-android_90 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-android_X INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-chrome_74_win10 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-chrome_79_win10 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-firefox_66_win81 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-firefox_71_win10 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-ie_6_xp INFO { 
No connection
}
clientsimulation-ie_8_win7 INFO { 
No connection
}
clientsimulation-ie_8_xp INFO { 
No connection
}
clientsimulation-ie_11_win7 INFO { 
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
}
clientsimulation-ie_11_win81 INFO { 
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
}
clientsimulation-ie_11_winphone81 INFO { 
No connection
}
clientsimulation-ie_11_win10 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-edge_15_win10 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-edge_17_win10 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-opera_66_win10 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-safari_9_ios9 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-safari_9_osx1011 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-safari_10_osx1012 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-safari_121_ios_122 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-safari_130_osx_10146 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-apple_ats_9_ios9 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-java_6u45 INFO { 
No connection
}
clientsimulation-java_7u25 INFO { 
No connection
}
clientsimulation-java_8u161 INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-java1102 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-java1201 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-openssl_102e INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-openssl_110l INFO { 
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
}
clientsimulation-openssl_111d INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
clientsimulation-thunderbird_68_3_1 INFO { 
TLSv1.3 TLS_AES_256_GCM_SHA384
}
rating_spec INFO { 
SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)
}
rating_doc INFO { 
https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide
}
protocol_support_score INFO { 
100
}
protocol_support_score_weighted INFO { 
30
}
key_exchange_score INFO { 
90
}
key_exchange_score_weighted INFO { 
27
}
cipher_strength_score INFO { 
90
}
cipher_strength_score_weighted INFO { 
36
}
final_score INFO { 
93
}
overall_grade OK { 
A+
}
scanTime INFO { 
146
}