Support

This certificate should be trusted by all major web browsers
+++++++++--

American Express Technologies
Phoenix, Arizona
US

SSL Certificate correctly installed

This certificate should be trusted by all major web browsers

This website has the possibility to send data across a secure connection. This is no guarantee that this indeed will happen, it is however a good indication. To be sure we advise you, before you submit any personal information, to check if the url in the address bar starts with https:// in stead of the insecure http:// The additional 's' stands for security.

  • - No Heart Bleed vulnerability!
  • - SSL Certificate is not expired
  • - Site is listed in the certificate
  • - Organisation details are listed
  • - Encryption strength is at least 2048-bit
  • - Signature Algorithm is strong
  • - Accepting only high encryption cipher suites
  • - No connection upgrade to 128-bit for old browsers
  • - No Extended Validation on company details
  • - No Debian weak key present
  • - No known security issues for this Certificate Authority

General info

The SSL Certificate for *.americanexpress.com is signed by Cybertrust Public SureServer SV CA wich is signed by Baltimore CyberTrust Root wich is signed by GTE CyberTrust Global Root . The SSL Certificate will expire on Thursday 16 April 2015 this means it is still valid for 237 days.

Send me a reminder when this SSL Certificate is about to expire. Send me a reminder when this SSL Certificate is about to expire.

Subject Alternative Name (SAN)

This SSL Certificate has none subject alternative name(s).

Organisation details +

The identity of the owner of this domain/certificate has been validated. The details can be retrieved from the certificate.

Encryption strength ++

The SSL Certificate has a 2048-bit length private key. Longer RSA keys are required to provide security as computing capabilities increase. The recommended RSA key-length is 2048 bits. Although a 4096-bit RSA key length is more secure than the common 2048-bit length, it is also slower and might effect server performance. Most web servers continue to use 2048-bit RSA keys without negatively influencing security for normal operations

Signature Algorithm +

The SSL Certificate is signed with a sha1WithRSAEncryption method which is an accepted secure standard algorithm for signing certificates. The less secure MD5 algorithms can be potentially manipulated during the signing process and should no longer by used. [read more ...]

Cipher Suite +

This site only accepts connections with a strong cipher suite and will not allow weak encryption for SSL sessions. [read more ...]

Server Gated Cryptography (SGC) -

This certificate is not able to create a 128-bit secure connection for older browsers. The certificate has no SGC, Server Gated Cryptography support wich will upgrade a 40-bit connection to a secure 128-bit connection.

Extended Validation (EV) -

This SSL Certificate will not display a green address bar in the visitors browser, nor the identity of the website owner or the Certificate Authority. EV SSL Certificates have the highest level of trust and security.

Certificate Authority Security Issues -

There are no known issues with the Certificate Authority who issued this SSL Certificate.

Debian Weak Key +

This SSL Certificate is not affected by the Debian weak key problem. Between September 2006 and May 2008, Debian-based servers have generated weak keys. Once a hacker finds a server using a weak key, he can use the public key to find the private key.

*.americanexpress.com

Certificate information:
American Express Technologies
Phoenix, Arizona
US

Valid from:
Wednesday 16 April 2014

Valid till:
Thursday 16 April 2015

keyLength:
2048

Signature Algorithm:
sha1WithRSAEncryption

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate chain
Cybertrust Public SureServer SV CA

Certificate information:
Cybertrust Inc

Valid from:
Wednesday 8 September 2010

Valid till:
Tuesday 8 September 2020

keyLength:
2048

Signature Algorithm:
sha1WithRSAEncryption

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Certificate chain
Baltimore CyberTrust Root

Certificate information:
Baltimore
IE

Valid from:
Friday 12 May 2000

Valid till:
Tuesday 13 May 2025

keyLength:
2048

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----