Quality of SSL protection for US financial institutions

Troy Hunt put together a list of top Australian banks and their SSL rating using the Qualys SSL Server Test that reveals the somewhat depressing state of SSL security of various banks down-under.

This got me wondering how US financial institutions stack up, and I thought I’d share:

Update Nov 2015: Lots of progress by many of the institutions with the exceptions of KeyBank still showing Poodle vulnerability, Union needing to support newer tech, Mint lacking overall considering they’re a tech company and Citibank being lame for blacklisting SSL Labs.


0 responses