Devart Forums

Some bad SSL certs that Secure Bridge is not catching in my testing so far.
Bad Certs CORRECTLY detected by Secure Bridge:

https://expired.badssl.com/
https://self-signed.badssl.com/
https://untrusted-root.badssl.com/

Bad Certs not detected by Secure Bridge:

https://wrong.host.badssl.com/
https://revoked.badssl.com/
https://pinning-test.badssl.com/

I am using the trial version of SecureBridge 9.0 for RAD Studio 10 Seattle
(sbridge23.exe is the install from your downloads page)
What would it take to handle these?
Thanks,

- Scott

Thank you for information.
We fixed the error for the site https://wrong.host.badssl.com/. This fix will be included in the next SecureBridge build.
The site https://revoked.badssl.com/ uses a revoked certificate. Support for verifying such certificates will be added in the next release of SecureBridge.
The site https://pinning-test.badssl.com/ uses the HPKP technology, which is currently not supported. Checking this site through https://ssllabs.com/ssltest/analyze.htm ... badssl.com shows that this site is safe.
Note, this technology is no longer supported by the latest browsers. (https://chromestatus.com/feature/5903385005916160)

Excellent to hear.
Thank you.

Thank you for the interest to our product.
If you have any questions during using our products, please don't hesitate to contact us - and we will try to help you solve them.