This is a good time to offer a reminder that Entrust Datacard has a great tool for secure server testing, the SSL Server Test. The tool grades your server installation and reviews the: certificate, protocol support, key exchange and cipher strength for security against standards and known vulnerabilities.
The grading tool also provides feedback on handshake simulations with various versions of browsers and operating systems. This lets the server administrator know which implementations are supported. The test also checks the server mitigation for known vulnerabilities such as: DROWN, BEAST, POODLE and Heartbleed.
As support for SSL/TLS evolves, the author of the SSL Server Test reviews and changes the grading system to make it stricter. The goal is to discourage administrators from supporting vulnerable items, and instead arm them with what they need to support the latest and greatest practices for server security.
In 2017, we will start to see the following changes:
The SSL Server Test grading will be changed continually to help support better HTTPS security. Please take time to test your server on a regular basis to ensure your site is secure and your users are protected.