Overview
Findings
Details
Related
LynxRadarDirectory → aiinsurance.io
A+
100 / 100

aiinsurance.io

Security report · Scanned February 18, 2026

Checks
8
Passed
8
Warnings
0
Critical
0
AI-Generated Summary
What this means

aiinsurance.io scored 100/100, demonstrating a strong security posture. No material issues found.

How aiinsurance.io compares

Grade distribution across 2394 companies we've scanned. aiinsurance.io scores better than 99% of them.

99th percentile
0 Percentile rank 100
72
A+
22
A
180
A-
182
B+
69
B
335
B-
114
C+
111
C
301
C-
110
D+
92
D
217
D-
589
F
aiinsurance.io — Grade A+ (100/100) 2394 companies scanned
Security checks

Each check inspects a different part of aiinsurance.io's public security setup. Green means healthy, yellow needs attention, red is a problem.

Known Breaches
No known breaches found in public disclosure databases.
Healthy
TLS Configuration
TLSv1.3 negotiated with TLS_AES_128_GCM_SHA256 (128-bit). Strong configuration with no deprecated protocols or weak ciphers detected.
Healthy
CVE Exposure
No server software versions detected in HTTP response headers. This is good practice (version hiding) but means CVE exposure cannot be assessed from external signals alone.
Healthy
HSTS Header
HSTS enabled: max-age=31556926. Missing includeSubDomains. Missing preload directive.
Healthy
Security Headers
4/5 security headers present. Missing: Permissions-Policy.
Healthy
DNS Configuration
Strengths: 4 nameservers configured (ns-cloud-b2.googledomains.com., ns-cloud-b1.googledomains.com., ns-cloud-b3.googledomains.com., ns-cloud-b4.googledomains.com.); 5 MX records present; DNSSEC enabled; Zone transfers properly restricted.
Healthy
DMARC / Email Security
Strengths: DMARC policy set to reject (strongest); SPF record present with hard-fail (-all); DKIM configured (selectors: google, s1, s2, k1).
Healthy
Certificate Hygiene
Strengths: Certificate valid, 55 days remaining; Issued by Let's Encrypt.
Healthy
At a glance

Key data points from the scan.

TLS Version
TLSv1.3
TLSv1.3 negotiated with TLS_AES_128_GCM_SHA256 (128-bit). Strong configuration with no deprecated protocols or weak ciphers detected.
DMARC Policy
p=reject
Strengths: DMARC policy set to reject (strongest); SPF record present with hard-fail (-all); DKIM configured (selectors: google, s1, s2, k1).
SPF Record
Present
v=spf1 include:_spf.google.com include:amazonses.com -all
Security Headers
4/5 present
Missing: Permissions-Policy
HSTS
Enabled
HSTS enabled: max-age=31556926. Missing includeSubDomains. Missing preload directive.
SSL Certificate
Valid
Strengths: Certificate valid, 55 days remaining; Issued by Let's Encrypt.
DNSSEC
Enabled
Strengths: 4 nameservers configured (ns-cloud-b2.googledomains.com., ns-cloud-b1.googledomains.com., ns-cloud-b3.googledomains.com., ns-cloud-b4.googledomains.com.); 5 MX records present; DNSSEC enabled; Zone transfers properly restricted.