Server Features » TLS Certificate » Unknown CA » Hybrid
TLS certificate status: Unknown CA
Percentage of SSL/TLS servers with certificate status Unknown/non-trusted Certificate Authority. Showing percentages for Hybrid servers only.About this test result: The certificate is signed by an unknown or non-trusted Certificate Authority. This will generate a certificate warning on the IRC client which the user will have to ignore. This is not secure as it allows a Man-in-the-Middle attack.
Note on statistics:
- There is a difference in the gathering of TLS servers between 2017-2019 and 2020-onwards, see SSL/TLS statistics on the data page.
- For certificate validation errors, OpenSSL (s_client) returns a single error only, so only 1 of the errors is picked even though one server cert could have multiple errors.
- However, from 2023 onwards "Expired" is detected even when there are other errors (eg. Unknown CA).
Table
Percentage of SSL/TLS servers with certificate status Unknown/non-trusted Certificate Authority. Showing percentages for Hybrid servers only.| Version | Sep 2017 | Dec 2018 | Dec 2019 | Dec 2020 | Dec 2021 | Dec 2022 | Dec 2023 |
|---|---|---|---|---|---|---|---|
| 8.1 | 13% | 20% | 25% | 29% | 50% | 14% | 20% |
| 8.2 | 11% | 10% | 9% | 13% | 16% | 12% | 9% |