#  SSL/TLS Server Rating Guide

SSL (Secure Socket Layer) server rating refers to the evaluation of a server's implementation of SSL/TLS protocols for secure data transmission over the internet. A strong SSL server rating contributes to a safer online environment, ensuring the confidentiality and integrity of data transmitted between users and servers.

emSign's SSL/TLS Certificate Checker tool comes with in-built validation engine which helps to verify your SSL certificate on your web server is properly installed and trusted. A detailed downloadable PDF report is also made available, as well as the cached history based data viewing. emSign SSL Validator engine will detect and calculate the SSL server ratings based on the below key parameters.  

* **Valid & Trusted Certificate**: emSign SSL Validator will validate the domain of your website & decide the overall SSL server rating by analyzing various SSL/TLS protocols.
* **SSL/TLS version used**: TLS protocol has seen several versions, Common versions include SSL 3.0, TLS 1.0, TLS 1.1, TLS 1.2, and TLS 1.3.
* **Protocol support**: The SSL/TLS protocol version in use is a critical factor. Newer versions tend to have better security features and improvements. For example, TLS 1.3 is considered more secure than earlier versions.
* **Key exchange support**: The SSL/TLS server rating considers the strength of key exchange mechanisms, evaluating their cryptographic robustness and contribution to secure communication. Longer key lengths generally provide stronger security against cryptographic attacks.
* **Cipher support**: A stronger cipher allows for stronger encryption and thus increases the effort needed to break it. The SSL/TLS server rating considers the strength and security of supported cipher suites, prioritizing modern and robust algorithms.

**SSL/TLS Server Rating letter grades**

Assigning letter grades to SSL/TLS server ratings can provide a quick and intuitive way to communicate the security level. Here's a general guide for detailed insights into SSL/TLS server ratings:

* Rating 'A' - Excellent
* Rating 'B' - Best
* Rating 'C' - Good
* Rating 'D' - Fair
* Rating 'E' - Poor
* Rating 'F' - Fail

> **Score to Grade Letter Conversion**

<table><thead><tr><th width="250">Score</th><th>Server Rating Letter Grade</th><th data-hidden>#</th></tr></thead><tbody><tr><td>Score >= 80</td><td>A</td><td>2.</td></tr><tr><td>Score >= 65</td><td>B</td><td></td></tr><tr><td>Score >= 50</td><td>C</td><td></td></tr><tr><td>Score >= 35</td><td>D</td><td></td></tr><tr><td>Score >= 20</td><td>E</td><td></td></tr><tr><td>Score &#x3C; 20</td><td>F</td><td></td></tr></tbody></table>

To explore or use this feature, check out CERTInext -> Discovered Certificates -> Action -> Scan Vulnerabilities


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.certinext.io/documentation/certificate-installation-guides/ssl-tls-server-rating-guide.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.