DNSSEC with NSEC lets attackers walk your entire zone and enumerate every hostname. NSEC3 fixes this. SSLBoard now tests for it, including across CNAME delegations to third parties.
Read article
Harden Cloudflare SSL/TLS in five steps: HTTPS redirects, HSTS, TLS 1.2 minimum, TLS 1.3, and Advanced Certificate Manager to eliminate weak ciphers.
Read article
Definitions for TLS, SSL, certificates, cipher suites, OCSP, HSTS, CAA, and more. A plain-English reference for understanding SSLBoard reports.
Read article
See which certificate authorities can issue for every subdomain. SSLBoard maps live CAA records with CT data to expose your full issuance policy.
Read article
Post-quantum cryptography is part of TLS hygiene alongside certificate expiry, key length, cipher strength, and protocol versions. Learn how to approach it.
Read article
Expired SSL certificates expose more than downtime risk: they reveal gaps in security, monitoring, and compliance. Here's what they say about your company.
Read article
SSLBoard finds and tracks certificates without agents on your servers. Learn about the security advantages of this agentless approach.
Read article
Twitter's SSL certificate nearly expired and reporting it was harder than expected. Explore SSL management challenges and preventing security lapses.
Read article
Missed SSL certificate deployments cause downtime and security risks. SSLBoard instantly detects renewed but unused certificates—be proactive, not reactive.
Read article
Certificate Transparency helps detect unauthorized SSL/TLS certificates. Learn how SSLBoard leverages CT logs to audit, track, and verify certificates.
Read article