Server Features » TLS Certificate » Unknown CA » charybdis
TLS certificate status: Unknown CA
Percentage of SSL/TLS servers with certificate status Unknown/non-trusted Certificate Authority. Showing percentages for charybdis servers only.About this test result: The certificate is signed by an unknown or non-trusted Certificate Authority. This will generate a certificate warning on the IRC client which the user will have to ignore. This is not secure as it allows a Man-in-the-Middle attack.
Note on statistics:
- There is a difference in the gathering of TLS servers between 2017-2019 and 2020-onwards, see SSL/TLS statistics on the data page.
- For certificate validation errors, OpenSSL (s_client) returns a single error only, so only 1 of the errors is picked even though one server cert could have multiple errors.
- However, from 2023 onwards "Expired" is detected even when there are other errors (eg. Unknown CA).
Table
Percentage of SSL/TLS servers with certificate status Unknown/non-trusted Certificate Authority. Showing percentages for charybdis servers only.| Version | Sep 2017 | Dec 2018 | Dec 2019 | Dec 2020 | Dec 2021 | Dec 2022 | Dec 2023 |
|---|---|---|---|---|---|---|---|
| 3.4 | 7% | 13% | 17% | 33% | 14% | 14% | 14% |
| 3.5 | 12% | 6% | 5% | 5% | 15% | 13% | 11% |
| 4.1 | 0% | 17% | 10% | 16% | 31% | 27% | 10% |