Calomel SSL Validation

Author(s):



IMPORTANT: Development of the Calomel SSL Validation addon has been put on
hold. Mozilla is disabling XUL and XPCOM in Firefox which means the addon is
no longer able to query the current browser tab for the TLS certificate and
cipher information.

Mozilla is introducing a new framework called WebExtensions which all new
addons must use, but WebExtensions are not allowing addons to query the TLS
certificate and cipher at this time.

You can use Firefox's Network Security tab to retrieve the same TLS information
the addon was collecting.

To use Firefox's Network Security tab:

1. "Ctrl-Shift-Q" to open the Network window
2. Load or re-load the web page
3. Click on the top HTML document
4. Choose the "Security" tab in the right hand window

Sorry for the bad news. Thanks for everyone's support. When we are able to query the TLS information using WebExtensions we will try a re-write of this addon sometime in the future.

----

Please update to the latest version of Firefox to take advantage of the latest SSL ciphers. Then make sure you have the latest version of the Calomel add on. We are only supporting the latest version of our add on on the latest version of Firefox.

----

The "Calomel SSL Validation" add-on grades the SSL cipher strength of the current connection. Access to a detailed summery of the SSL negotiation is supplied by a toolbar button you can place in any location. The button will change color depending on the score from red (low score), yellow, blue and finally to green (high score). Standard HTTP unencrypted connections will turn the URL bar icon gray.

This add-on was designed to more easily show the true security state of the connection so everyone can learn more about ciphers and encryption using SSL. Firefox currently shows a green URL tag for an extended validation (EV) or a blue URL tag for a domain validation (DV) certificate and a lock icon if the connection is SSL encrypted. We did not think this was enough information to decide if the connection to the site was truly secure. This is why the "Calomel SSL Validation" add-on was developed.

We score the connection on the following items: if the certificate was valid, if the fully qualified host name is equal to the common name the certificate was registered for and the strength of the cipher and cipher key length.

Privacy and security are very important to us. This add-on does NOT contact any external sources about browsing habits or SSL statistics. All information is retrieved from Firefox itself and kept internal to only your user. The add on does NOT store any personal or metadata information other then your preferences (as about:config values) to protect your privacy.

Securely,
Calomel @ https://calomel.org

Download files:

calomel-ssl-validation-0.32.xpi
calomel-ssl-validation-0.33.xpi
calomel-ssl-validation-0.42.xpi
calomel-ssl-validation-0.43.xpi
calomel-ssl-validation-0.44.xpi
calomel-ssl-validation-0.46.1-signed.xpi
calomel-ssl-validation-0.47.1-signed.xpi
calomel-ssl-validation-0.48.1-signed.xpi
calomel-ssl-validation-0.50.1-signed.xpi
calomel-ssl-validation-0.51.1-signed.xpi
calomel-ssl-validation-0.52.1-signed.xpi
calomel-ssl-validation-0.53.1-signed.xpi
calomel-ssl-validation-0.54.1-signed.xpi
calomel-ssl-validation-0.55.1-signed.xpi
calomel-ssl-validation-0.56.1-signed.xpi
calomel-ssl-validation-0.57.1-signed.xpi
calomel-ssl-validation-0.58.1-signed.xpi
calomel-ssl-validation-0.61.1-signed.xpi
calomel-ssl-validation-0.62.1-signed.xpi
calomel-ssl-validation-0.64.1-signed.xpi
calomel-ssl-validation-0.66.1-signed.xpi
calomel-ssl-validation-0.67.1-signed.xpi
calomel-ssl-validation-0.70.1-signed.xpi
calomel-ssl-validation-0.72.1-signed.xpi
calomel-ssl-validation-0.74.1-signed.xpi
calomel-ssl-validation-0.75.1-signed.xpi
calomel-ssl-validation-0.76.xpi
calomel-ssl-validation-0.77.xpi
calomel-ssl-validation-0.78.xpi
calomel-ssl-validation-0.79.xpi
calomel-ssl-validation-0.80.xpi
calomel-ssl-validation-0.81.xpi
calomel-ssl-validation-0.82.xpi


This page is part of the LegacyCollector website.
Disclaimer: All material on this site is property of their respective owners and available under
open licenses to the best of our knowledge. If you are an author and would like anything removed,
then please write an e-mail to legacy [at] collector dot org.