TLS/SSL Certificate Finding Identifier – May 29, 2024 Ingrid The TLS/SSL Certificates risk vector now uses the Certificate Serial Number as the finding identifier. The evidence_key value in GET: TLS/SSL Certificates Finding Details [/v1/companies/company_guid/findings?risk_vector=ssl_certificates] API also replaces the IP/domain with the Certificate Serial Number. This change is prompted by the observation that the current IP/domain identifier can sometimes be misleading, as it does not precisely identify the certificate in question. To continue incorporating IP/domain information into your internal processes: When viewing TLS/SSL Certificate findings [SPM App: Findings ➔ Findings Table], go into the Details tab to see where it was observed. The IP or Domain is listed under Key Evidence. Refer to the Certificate Subject Alternate field in Findings Table [SPM App: Findings ➔ Findings Table]. Refer to the details.diligence_annotations.certchain.dnsName field for the Bitsight API. Related articles TLS/SSL Finding Remediation & Remediation Verification Attack Surface: Cloud Infrastructure Sync My Company Dashboard: Vendor Discovery Card – May 8, 2024 What is a Finding Rescan? Lifetime by Risk Vector Feedback 0 comments Please sign in to leave a comment.