1&1 IONOS SSL brings success and security to your website
- Protection for one domain name
- Domain Validation
- Up to 256-bit encryption
- Green padlock display
- Easy to activate
SSL Checker - FAQ
If SSL is installed you can use the SSL certificate checker to determine whether there are any potential security gaps which could endanger the data exchange. Over the last few years serious security leaks have been discovered repeatedly, particularly with older SSL versions and implementations. Use the SSL tester from 1&1 IONOS to avoid potential gaps in your SSL certificate.
No SSL Connection.
This notification means that the connection to your website is not protected by an SSL certificate, either because you haven't installed one, or it is expired or faulty. If this is the case you should review the installation of your SSL certificate or request a new one. If the SSL test is successful, it shows you which certificate you are using, whether it is installed correctly, and if there are any safety gaps.
Certificate is installed correctly.
This means both that your SSL certificate is installed correctly and that it is valid. For more detailed information on the checked certificate go to "certificate information". "Certificate status" also shows you whether or not your certificate is valid.
Even if your certificate is working and valid you are not automatically protected against all known threats. If your certificate is valid but does not offer you complete protection, our SSL checker will automatically tell you. The test looks for any security gaps in your SSL version and informs you of threats you still need to protect yourself against, which usually requires adapting the configuration of the web server.
Warnings. BEAST. The BEAST attack is not mitigated on this server.
This notification means that an attack by BEAST was not disarmed by the server.
The SSL checker examines the SSL configuration of the URL for any security gapsPotential vulnerabilities include POODLE, FREAK, BEAST, CRIME and Heartbleed. If the website checked does not pass the Heartbleed test or one of the other security checks, the SSL check will let you know and even give you advice on how to solve the problem.
The SSL check detects problems in the following areas:
Installation of the SSL certificate (first section):
- No installation / faulty installation / wrong certificate
- Type, name, and validity of certificate (time period and status)
- Domain/Organization, serial number and other information
- Which certification authority issued the certificate
- Who in turn has the certification body certified
- Which security gaps can be detected in your current SSL version?
- Which algorithms (cipher suites) are used for key exchange, encryption, and authentication?
- The dispatcher retrieves the public key of the recipient.
- A digital certificate proves the authenticity, scope of application and jurisdiction of the public recipient key.
- A digital signature verifies the certificate of the public recipient key.
- This signature can in turn be verified by the public key of the certificate issuer.
- The issuer key has to prove its validity with a certificate.
This process forms an SSL certificate chain that ensures that both dispatcher and recipient can rely on the authenticity of the certified key. This also means that unauthorized third parties cannot read the encrypted data.
The SSL certificate chain can be found in the "certificate chain" section of the SSL test. Provided the SSL certificate of the tested website is functioning properly, the result of the test will show a multilevel chain with green checks next to the certificate symbols.
Example of a cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA (0x0035). TLS describes the encryption protocol and the key exchange occurs via the standard RSA algorithm. AES (Advanced Encryption Standard) with 256 Bit in the CBC mode (Cipher Block Chain) is used for the encryption, while the hash function works with SHA. The bracket indicates the byte sequence.
We'd be happy to help you choose the right product or provide support for existing customers.