Some bad SSL certs that Secure Bridge is not catching in my testing so far.
Bad Certs CORRECTLY detected by Secure Bridge:
https://expired.badssl.com/
https://self-signed.badssl.com/
https://untrusted-root.badssl.com/
Bad Certs not detected by Secure Bridge:
https://wrong.host.badssl.com/
https://revoked.badssl.com/
https://pinning-test.badssl.com/
I am using the trial version of SecureBridge 9.0 for RAD Studio 10 Seattle
(sbridge23.exe is the install from your downloads page)
What would it take to handle these?
Thanks,
- Scott
Bad SSL certs that SecureBridge is failing to detect
-
- Posts: 8
- Joined: Mon 28 Jan 2019 15:21
Re: Bad SSL certs that SecureBridge is failing to detect
Thank you for information.
We fixed the error for the site https://wrong.host.badssl.com/. This fix will be included in the next SecureBridge build.
The site https://revoked.badssl.com/ uses a revoked certificate. Support for verifying such certificates will be added in the next release of SecureBridge.
The site https://pinning-test.badssl.com/ uses the HPKP technology, which is currently not supported. Checking this site through https://ssllabs.com/ssltest/analyze.htm ... badssl.com shows that this site is safe.
Note, this technology is no longer supported by the latest browsers. (https://chromestatus.com/feature/5903385005916160)
We fixed the error for the site https://wrong.host.badssl.com/. This fix will be included in the next SecureBridge build.
The site https://revoked.badssl.com/ uses a revoked certificate. Support for verifying such certificates will be added in the next release of SecureBridge.
The site https://pinning-test.badssl.com/ uses the HPKP technology, which is currently not supported. Checking this site through https://ssllabs.com/ssltest/analyze.htm ... badssl.com shows that this site is safe.
Note, this technology is no longer supported by the latest browsers. (https://chromestatus.com/feature/5903385005916160)
-
- Posts: 8
- Joined: Mon 28 Jan 2019 15:21
Re: Bad SSL certs that SecureBridge is failing to detect
Excellent to hear.
Thank you.
Thank you.
Re: Bad SSL certs that SecureBridge is failing to detect
Thank you for the interest to our product.
If you have any questions during using our products, please don't hesitate to contact us - and we will try to help you solve them.
If you have any questions during using our products, please don't hesitate to contact us - and we will try to help you solve them.