ExtraHop Logo
Try ExtraHop
Menu iconX icon
  • Platformchevron right
  • Solutionschevron right
  • Modern NDRchevron right
  • Resourceschevron right
  • Companychevron right
User iconSign In
Contact Us

DETECTION OVERVIEW

Self-signed TLS Server Certificate

Risk Factors

Although most web browsers display a warning to the user after a certificate expires, the warning can erode user trust, resulting in loss of reputation or brand credibility. While users can ignore warnings and connect to a server with a self-signed certificate, insecure TLS connections increase their risk of exposure to remote malicious servers or man-in-the-middle attacks such as phishing scams.

Kill Chain

Hardening

Risk Score

61

Next in Hardening: TLS 1.3 Early Data Connection

Attack Background

Mitigation Options

Replace TLS certificates that are self-signed

What else can RevealX do for you?

View our Periodic Table of use casesArrow pointing right