webperf_core icon indicating copy to clipboard operation
webperf_core copied to clipboard
verified publisher icon Webperf-se

Test Improvement - HTTP & Network - Extended

Open 7h3Rabbit opened this issue 3 years ago • 2 comments

Suggested Improvements:

  • Check HTTP Method support/use
  • Validate CAA – Certification Authority Authorization
  • Validate that same website over IPv6 and IPv4
  • Validate Ciphers support & cipher order

In progress:

  • Validate use of DNSSEC ( https://www.cloudflare.com/dns/dnssec/how-dnssec-works/ )

7h3Rabbit avatar Dec 16 '22 22:12 7h3Rabbit

we should add timeout according to request in #121

7h3Rabbit avatar Mar 02 '24 20:03 7h3Rabbit

We should check if X-Frame-Options is used and

adjust rating for setting 'frame-ancestors' directive to 'none' is similar to X-Frame-Options: deny (which is also supported in older browsers).

CSP Improvements

  • Validate correct CSP hash format ( <hash-algorithm>-<base64-value>)
  • We should check CSP nonce length as it should not be guessable.

TLS Improvements

  • Check cipher security
  • re add support for identify wrong certificate

cockroacher avatar May 09 '24 11:05 cockroacher