emSign Knowledge Base
  • emSign
  • Getting Started
    • About emSign
    • Why emSign?
    • Key Highlights
      • Root Store Listings
      • Trust
      • Security
    • Certificate Lifecycle and Key Management Platform (CERTInext)
  • emSign CERTInext
    • Overview
    • Getting Started
      • Enterprise Sign up
      • Partner Sign up
      • Retail Customers
      • Multi-factor & Trusted login
        • Multifactor Authentication and Single Sign On
        • Enforce 2FA
        • IP Restrictions
        • Digital Certificate based login
      • Alerts and Notifications
    • User and Group Management
    • Ordering a Certificate
      • As a Customer
        • DV certificates
        • OV Certificates
        • EV Certificates
        • SMIME Certificates
        • Intranet SSL Certificate
        • IGTF Certificates
        • Subscription Plan Coverage for SSL Products
        • Group-based Certificates Ordering
        • Ordering using Custom Fields
      • As a Partner
        • Order for Customers
        • Order for Sub-accounts
      • Requester Approval Workflows
        • EV requests by Authorized Signatory
        • Certificate requests by Administrator
      • Submitting a Certificate Signing Request (CSR)
        • Submit CSR for Pending Orders
        • Replace CSR for Pending Orders
      • Downloading Certificates
        • Download Interim DV
        • Download Certificate
      • Post Order Actions
        • Renew Certificate
        • Revoke an issued Certificate
        • Reissue Certificate
        • Add / Remove SANs for Multi-Domain SSL
    • Management
      • Domains
      • Organizations
      • Orders
      • Products
      • Templates
        • CSR Templates
        • Provisioning Templates
    • Integrations
      • Using APIs to Order
        • REST APIs
        • ACME APIs
      • Tools
        • eMudhra Certificate Utility Tool
        • eMudhra emSign Click Tool
          • Procedure for installing Certificate in HSM
          • Procedure for Attested CSR Generation
      • CA Connectors
    • Billing & Payments
      • Add Credits
      • Invoices
      • Statement (Ledger Statement)
      • Product Price List
    • Reports
      • Orders Report
      • Overall Statistics
      • Certificates Report
      • Key Store Report
      • Key Report
      • Sales Summary
      • Audit Logs
    • Settings
      • Reporting Tags
      • Manage Schedules
      • Custom Fields
    • Certificate Lifecycle Management
      • Discover Certificates
      • emSign CERTInext Bot
    • Key Lifecycle Management
      • Manage Keys
      • Key Profiles
      • Key Store
  • Consent Management
  • Certificate Approval Process
    • Domain Validation (DV) Process
    • Organization Validation (OV) Process
    • Extended Validation (EV) Process
    • User Certificates Process
    • SMIME Certificate Process
    • Qualified Sources
  • Certificate Installation
    • Before you install
    • Browser Compatibility
    • emSign's Security Seal
    • Installing SSL Certificate on IIS
    • Installing SSL Certificate on cPanel
    • Installing SSL Certificate on Amazon Web Services (AWS)
    • Installing SSL Certificate on Apache
    • Installing SSL Certificate on Plesk 12
    • Installing SSL Certificate on NGINX
    • Installing SSL Certificate on Google App Engine
    • Installing SSL Certificate on WHM
    • Installing SSL Certificate on Ubuntu
    • Installing SSL Certificate on Tomcat
    • Installing SSL Certificate on Heroku
    • Installing SSL Certificate on Bigcommerce
    • Installing Root & Intermediate Certificates for Intranet SSL
    • Supported Devices for auto-provisioning of certificates
    • SSL/TLS Server Rating Guide
  • Release Notes
    • Introduction
    • R1619 (07-Apr-2025)
    • R1591 (10-Mar-2025)
    • R1581 (28-Feb-2025)
    • R1553 (31-Jan-2025)
    • R1522 (31-Dec-2024)
    • R1490 (29-Nov-2024)
    • R1460 (30-Oct-2024)
    • R1427 (27-Sep-2024)
    • R1371 (02-Aug-2024)
    • R1354 (16-Jul-2024)
    • R1300 (23-May-2024)
    • R1251 (04-Apr-2024)
    • R1230 (14-Mar-2024)
    • R1196 (09-Feb-2024)
    • R1167 (11-Jan-2024)
    • R1152 (27-Dec-2023)
    • R1139 (14-Dec-2023)
    • R1124 (29-Nov-2023)
    • R1115 (20-Nov-2023)
    • R1101 (06-Nov-2023)
    • R1075 (11-Oct-2023)
    • R1062 (28-Sep-2023)
    • R1046 (12-Sep-2023)
    • R1039 (05-Sep-2023)
    • R1031 (28-Aug-2023)
    • R1024 (21-Aug-2023)
    • R1001 (29-Jul-2023)
Powered by GitBook

© eMudhra. All Rights Reserved.

On this page

Was this helpful?

Export as PDF
  1. Certificate Installation

SSL/TLS Server Rating Guide

SSL (Secure Socket Layer) server rating refers to the evaluation of a server's implementation of SSL/TLS protocols for secure data transmission over the internet. A strong SSL server rating contributes to a safer online environment, ensuring the confidentiality and integrity of data transmitted between users and servers.

emSign's SSL/TLS Certificate Checker tool comes with in-built validation engine which helps to verify your SSL certificate on your web server is properly installed and trusted. A detailed downloadable PDF report is also made available, as well as the cached history based data viewing. emSign SSL Validator engine will detect and calculate the SSL server ratings based on the below key parameters.

  • Valid & Trusted Certificate: emSign SSL Validator will validate the domain of your website & decide the overall SSL server rating by analyzing various SSL/TLS protocols.

  • SSL/TLS version used: TLS protocol has seen several versions, Common versions include SSL 3.0, TLS 1.0, TLS 1.1, TLS 1.2, and TLS 1.3.

  • Protocol support: The SSL/TLS protocol version in use is a critical factor. Newer versions tend to have better security features and improvements. For example, TLS 1.3 is considered more secure than earlier versions.

  • Key exchange support: The SSL/TLS server rating considers the strength of key exchange mechanisms, evaluating their cryptographic robustness and contribution to secure communication. Longer key lengths generally provide stronger security against cryptographic attacks.

  • Cipher support: A stronger cipher allows for stronger encryption and thus increases the effort needed to break it. The SSL/TLS server rating considers the strength and security of supported cipher suites, prioritizing modern and robust algorithms.

SSL/TLS Server Rating letter grades

Assigning letter grades to SSL/TLS server ratings can provide a quick and intuitive way to communicate the security level. Here's a general guide for detailed insights into SSL/TLS server ratings:

  • Rating 'A' - Excellent

  • Rating 'B' - Best

  • Rating 'C' - Good

  • Rating 'D' - Fair

  • Rating 'E' - Poor

  • Rating 'F' - Fail

Score to Grade Letter Conversion

Score
Server Rating Letter Grade

Score >= 80

A

Score >= 65

B

Score >= 50

C

Score >= 35

D

Score >= 20

E

Score < 20

F

To explore or use this feature, check out emSign Tools.

PreviousSupported Devices for auto-provisioning of certificatesNextIntroduction

Last updated 9 months ago

Was this helpful?