content:en_us:kb_3rdparty_security_metrics_ssl_certificate_information

SSL Certificate Information

This entry from Security Metrics shows that they are able to see your SSL certificate. This could be a publicly signed cert or a self-signed cert.

ClearCenter response

Short response

Visibility of the public key of the certificate is required for SSL communication. Not a security risk or vulnerability.

Long response

Being able to see the public key of your certificate is required for SSL communication. That is the point of SSL and part of the protocol negotiation. Seeing this cert is not a risk nor a vulnerability.

Resolution

No action required.

content/en_us/kb_3rdparty_security_metrics_ssl_certificate_information.txt · Last modified: 2015/01/29 16:47 (external edit)

Page Tools