SSL Report for tax.ny.gov

Current risk Medium Risk

Report Date March 6, 2026, 11:10 pm

Test duration 39 seconds

SSL Score 74/100 ?

What do the SSL checker ratings mean?

Our ratings range from A+ to F-, reflecting how well SSL security is implemented and installed on a website. The score is based on our comprehensive test checks.

How are the SSL ratings determined?

The ratings are determined by evaluating various aspects of SSL implementation, including:

• Certificate validity
• Protocol support
• Key exchange strength
• Cipher strength
• Vulnerability to known exploits

Trusted SSL Buy Trusted SSL

Your SSL score:

The site contains insecure HTTP links, potentially compromising user data.

HSTS policy absent: implement to enhance connection security

Potential LUCKY13 vulnerability: TLS CBC padding oracle attack risk

Certificate is trusted

Unsecure HTTP protocol is disabled

HSTS Strict Security is Disabled

Redirect to HTTPS Secure Enabled

Strong TLS Protocols Enabled

Strong Cipher Suites are Used

SSL check #1 for tax.ny.gov ( 161.11.225.180 )

Common Name: *.tax.ny.gov SAN: *.tax.ny.gov, tax.ny.gov Server: 161.11.225.180 Expire At: 2026-10-17 Invalid Domain: No HTTP Enabled: No HSTS Enabled: No HTTPS Redirect: Yes Server Info: BigIP Signature: BigIP

TLS and Compatibility

TLS 1.3: No TLS 1.2: Yes TLS 1.1: No TLS 1.0: No SSL 3: No SSL 2: No Weak Cipher Suites: No HSTS Max Age:0 Forward Secrecy: Yes OCSP Stapling: No Session Resumption Tickets: No Session Resumption Caching: No

SSL check #2 for www.tax.ny.gov ( 161.11.225.180 )

TLS and Compatibility

GreenIT, Inc.
USA, New York

Products

For Partners

Security tools

Support

SSL Report for tax.ny.gov