www.mozilla.org
tested 9 years ago
Certificate Overview
| Valid Host Names | Matched | www.mozilla.org mozilla.org | |
|---|---|---|---|
| Expires | in one year | Valid after Dec 2, 2013 | |
| Trust | Trusted | The certificate was issued by DigiCert SHA2 Extended Validation Server CA |
Security
| Encryption Ciphers | OK | ||
|---|---|---|---|
| Public Key Size | 2048 bits | Key sizes 1024 bits or larger are considered secure. Be aware that unnecessarily large key sizes will slow down the connection establishment. | |
| Secure Renegotiation | Yes | ||
| Protocols | OK | SSLv3, TLSv1 |
Performance
| HTTP Keepalive | Yes | ||
|---|---|---|---|
| SSL Session Cache | Yes | ||
| TLS Stateless Resume | No | TLS stateless resume allows for faster re-connections to TLS enabled servers, without needing session state to be stored on the server. | |
| SSL Handshake Size | 3843 bytes | A smaller SSL handshake means a faster connection. Reducing the number & size of certificates in your chain, and reducing the size of the public key will reduce this. |
Encryption Ciphers (TLS/SSLv3)
| Cipher | Strength | Algo | Key | KeyEx | Handshake | ||
|---|---|---|---|---|---|---|---|
| DHE-RSA-AES256-SHA | High | AES | 256-bit | DH | 136ms | 3691 bytes | |
| AES256-SHA | High | AES | 256-bit | RSA | 115ms | 3289 bytes | |
| EDH-RSA-DES-CBC3-SHA | High | 3DES | 168-bit | DH | 125ms | 3675 bytes | |
| DES-CBC3-SHA | High | 3DES | 168-bit | RSA | 115ms | 3273 bytes | |
| DHE-RSA-AES128-SHA | High | AES | 128-bit | DH | 132ms | 3691 bytes | |
| AES128-SHA | High | AES | 128-bit | RSA | 116ms | 3289 bytes | |
| RC4-SHA | Medium | RC4 | 128-bit | RSA | 121ms | 3265 bytes | |