www.cyphers.ai - Assessments

STRONG

[ cyphers ] score

TLS Validated by [ cyphers ] scout

FEB 2026

Harden your TLS Now

This endpoint has 1 finding that can be resolved (+10 pts). Choose how you want to proceed.

This is my server Get a free TLS certificate, generate a hardened server config, and verify your score improvement. Launch Remediation Wizard →

I'm connecting to it Use a Cyphers proxy or SDK integration to connect safely with enforced TLS best practices on your side. View Safe Connection Tools →

Connect Safely via Cyphers Proxy

[cyphers] Endpoint Tools allow you to connect safely to a server even though it will allow for insecure connections. Your connection will be secure regardless of the server's security posture.

N8N Cyphers Node

Drop-in workflow node. Routes HTTP requests through Cyphers proxy with enforced TLS 1.2+ and certificate pinning.

Install Node →

Claude Proxy MCP

MCP server for Claude Code / Claude Desktop. Proxies all tool-initiated HTTP calls through a TLS-validated tunnel.

Configure MCP →

OpenAI SDK Toolkit

Python / TypeScript wrapper. Patches the OpenAI SDK transport layer to enforce strict TLS validation on every API call.

View SDK Docs →

These proxies don't modify the remote server — they enforce TLS best practices on your side of the connection. Traffic is routed through the Cyphers proxy network which negotiates the strongest available cipher suite and rejects connections that fall below your configured threshold.

Certificate

Subject cyphers.ai

Issuer E7

Valid From 23/01/2026

Valid Until 23/04/2026

Days Remaining 61

Key ECDSA 256-bit

OCSP Stapling No

SCT No

Compliance Status

PCI-DSS 4.2.1

Passed

NDcPP FCS_TLS_EXT.1

Passed

HIPAA

Passed

Supported Cipher Suites

6 ciphers across 2 protocols

TLS1.3 3 ciphers

TLS_AES_128_GCM_SHA256 STRONG

TLS_AES_256_GCM_SHA384 STRONG

TLS_CHACHA20_POLY1305_SHA256 STRONG

TLS1.2 3 ciphers

TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ACCEPTABLE

TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ACCEPTABLE

TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ACCEPTABLE

Protocols

2 of 4 supported

✓ TLS 1.0 Disabled

✓ TLS 1.1 Disabled

✓ TLS 1.2 Enabled OK

✓ TLS 1.3 Enabled GOOD

Findings

0 Critical

0 Major

0 Minor

5 Info

Protocol

✓ TLS 1.3 Support INFO

TLS 1.3 is supported

Certificate

✓ Certificate Validity INFO

Certificate is valid for 61 more days

! OCSP Stapling INFO

-5 pts ▼

OCSP stapling is not enabled

Observed: No OCSP response in TLS handshake

Expected: OCSP stapling enabled for faster revocation checks

Remediation: Enable OCSP stapling. For nginx: ssl_stapling on; ssl_stapling_verify on;

References: https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_stapling

WHY THIS MATTERS

Performance optimization that reduces latency for certificate revocation checks. Not a security vulnerability, but improves user experience.

Loading fix...

✗ Certificate Transparency (SCT) INFO

-5 pts ▼

No Signed Certificate Timestamps (SCT) found

Observed: No SCT in TLS handshake or certificate

Expected: SCT present for Certificate Transparency compliance

Remediation: Use a CA that supports Certificate Transparency. Most modern CAs include SCTs by default.

References: https://certificate.transparency.dev/

Loading fix...

Headers

✓ HSTS INFO

HSTS is enabled with max-age=31536000 seconds

Risk Summary

This endpoint has 1 finding that affect connection security. When connecting to www.cyphers.ai, these risks apply to your client:

OCSP Stapling (-5 pts)

Recommended Profile

Based on the current score (90), we recommend the Strong hardening profile for your client-side tools:

Get Config → View Tools →