Monitoring your SSL certificate is important if your website exchanges sensitive data (such as contact forms or checkouts on an ecommerce store). SSL certificates work by encrypting the data transfer between the origin server (you) and the host (your customer).
Any kind of data exchange (packet transfer) between you and your customers should always be secure, otherwise third-parties may be able to intercept the data packets, and sensitive customer information.
If your SSL hasn't been installed correctly, there could be potential security gaps which could leave your customer data at risk.
In recent years, incorrectly configured SSL certificates have been exploited, leading to some serious customer data breaches.
Monitor your SSL certificate
With CyberScanner's advanced cloud-based vulnerability scanner, you'll be able to actively monitor and check your SSL certificate for:
- Invalid configurations within your servers
- Weak SSL certificates
- Distrusted SSL certificates
- SSL expirations (warnings in advance of expiry)
- SSL related vulnerabilities (including BEAST, BREACH, FREAK, and Heartbleed)
BEAST, short for Browser Exploit Against SSL/TLS, is an SSL exploit first revealed in September 2011. It leverages weaknesses in cipher block chaining (CBC) to exploit the Secure Socket Layers (SSL) protocol.
BREACH, short for Browser Reconnaissance and Exfiltration via Adaptive Compression of Hypertext, is an SSL exploit against HTTPS when using HTTP compression.
BREACH was announced at the August 2013 Black Hat Conference, by cyber security researchers Angelo Prado, Neal Harris, and Yoel Gluck.
Freak, Factoring RSA Export Keys, is a cyber-security exploit of a cryptographic weakness in the Secure Socket Layer/Transport Layer Security protocols. The majority of modern browsers have taken steps to mitigate this flaw.
Heartbleed is a security bug in the OpenSSL cryptography library, which is a very widely used implementation of the TLS protocol, disclosed in 2014.
The Heartbleed issue occurs when there is an improper input validation (resulting from a missing bounds check) in the implementation of the TLS heartbeat extension.
CyberScanner can help you actively monitor your SSL certificate installations for exploits and vulnerabilities that can lead to customer data breaches, that may result in ICO fines under the new GDPR regulations.
Get in touch
We would love to hear from you!