We are looking for guidelines for testing a new product that works as a

Question

0

Asked: May 18, 20262026-05-18T09:53:37+00:00 2026-05-18T09:53:37+00:00

We are looking for guidelines for testing a new product that works as a

0

We are looking for guidelines for testing a new product that works as a “man in the middle” proxy, and intercept HTTPS traffic.

This system needs to act as a standard browsers and block any attempt to access a site with invalid certificate.

We thought about testing the following scenarios:

Expired certificate
A certificate that was issues for a future date
The requested hostname does not match the certificate hostname
The certificate is not signed by a root CA

My questions are:

What other certificates scenario should we test?
Which tools should we use to generate those “invalid” certificates?
Do you know of any open source project (maybe a browser or proxy) that has a set of unit tests that we can learn from?

Thanks.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-18T09:53:38+00:00

Editorial Team

2026-05-18T09:53:38+00:00Added an answer on May 18, 2026 at 9:53 am

The procedure of certificate validation is completely described in the corresponding RFCs (3280, 2560 etc.) and you don’t need to invent any “scenarios”.

For generation of certificates including invalid ones you can use our SecureBlackbox components (trial mode will be enough).

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

We are looking for guidelines for testing a new product that works as a

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply