The test verifies that we are using strong, modern cryptography to encrypt all web traffic to and from our primary server in Iceland. We implement a Strict Transport Security policy which instructs our server to refuse connections which cannot be secured. We also actively refuse connections from weak or outdated encryption protocols and mitigate against known vulnerabilities such as Heartbleed and POODLE. Further to this we have implemented forward secrecy which ensures that, even if our servers were to become vulnerable at a point in the future, data from today remains secure.
We intend to continue this trend of high security by rolling out SSL across our entire network in the near future.