Scan and monitor SSL / TLS certificates regardless of issuing CA
Setup scan targets and scheduling
Review scan log
View graphical reports on the dashboard
Query DNS CAA records via the command line
Audit and report on SSL / TLS certificates and certificate chains
FireDaemon Certify One is a software program designed to help you audit and report on SSL / TLS certificates and certificate chains.Certify One is used to check the validity of SSL / TLS certificates and certificate chains in order to eliminate downtime. Expired, revoked, and self-signed root, intermediate, and leaf certificates can cause system outages. Web browsers actively block sites offering self-signed or expired certificates. Critical infrastructure can fail if certificates and certificate chains are invalid. You can use Certify One to assist in validating FireDaemon Fusion’s TLS certificate, and other certificate or certificate chains offered by any other website, web service or other secure protocol that utilises TLS on a recurring scheduled basis.
Why would you want such a utility?
In recent years, browsers have become much stricter in regard to handling SSL / TLS certificates. For example, all major browsers will warn or even block access to sites where the SSL / TLS certificate is expired, self-signed, or revoked. Similarly, access may be blocked if the certificate chain of trust (e.g. root CA or intermediate certificates) is incorrect, certificates in the chain of trust are missing, have been revoked or are expired. Hence, it's important to be able to audit the validity of certificates, certificate chains and test whether certificates have been revoked.
How can Certify One help?
Certificates and certificate chains are considered “critical infrastructure” and are intrinsic to the successful functioning of digital communications and the Internet as a whole. Certify One SSL / TLS checker is a cybersecurity assessment software product designed to test and verify the robustness and validity of certificates used in encrypted digital communication between devices and platforms including IoT, e-commerce, websites, applications and industrial automation to ensure confidentiality, data integrity, and end-point authentication.
Sitting behind the corporate firewall, Certify One monitors, tests, collates and reports on certificates and certificate chain validity and assist in the lifecycle management of certificates, averting the negative consequences of certificate invalidity and minimise certificate “sprawl” such as shadow certificates.
Certify One is designed to integrate with enterprise Private Key Infrastructure (PKI) such as Microsoft Certificate Services and other public certification entities. Certify One is designed to test the cryptographic integrity in use on corporate networks and report discovered weaknesses and vulnerabilities to allow employees responsible for certificate management to focus on certificate validity.
How is Certify One different?
Our aim is to lower the barrier to entry from an analysis and reporting perspective and cost standpoint.
Certify One intends to significantly lower the cost of compliance, be easy to deploy, facilitate testing of private networks, and test certificates associated with multiple protocols that utilise encryption plus confirm the strength of the encrypted information exchange.
Designed to run behind the corporate firewall and integrate directly with enterprise Private Key Infrastructure (PKI) such as Microsoft Certificate Services and other public certification entities. We test cryptographic integrity in use on corporate networks and report on discovered weaknesses and vulnerabilities to allow employees responsible for certificate management to focus on certificate validity.