What is the security status of innosuisse.ch?

innosuisse.ch has a security score of 75/100, rated as Safe. The website demonstrates good security practices.

Is innosuisse.ch safe to use?

Our security scan shows innosuisse.ch is Safe. SSL security issues detected. Always practice safe browsing habits.

Does innosuisse.ch have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 75/100, the website is rated as Safe. However, websites can change over time, so always use updated security software.

What is innosuisse.ch's trust score?

innosuisse.ch has a security score of 75/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is innosuisse.ch Safe? Security Analysis for Innosuisse

https://innosuisse.ch

Check if innosuisse.ch is a scam or legitimate. Free security scan and reviews.

GovernmentSwitzerlandmedium

Tailwind CSSVue.js (implied by Nuxt.js references)Nuxt.jsCustom fonts (Noto Sans)Swiper.js (carousel)+1 more

Analyzed 10/4/2025Completed 4:24:35 AM

Security Score

MEDIUM RISK

AI Summary

Innosuisse is the Swiss Innovation Agency dedicated to supporting science-based innovation for the benefit of the economy and society. As a government-backed entity, it provides funding, coaching, and networking services primarily targeting startups, SMEs, and research institutions in Switzerland. The website reflects a professional and consistent brand image aligned with its government affiliation. Technically, the site employs modern frontend technologies such as Nuxt.js and Tailwind CSS, offering good mobile responsiveness and user experience. However, the site lacks visible privacy and cookie policies, security headers, and incident response information, which are important for compliance and security transparency. The domain is a legitimate Swiss government domain with consistent WHOIS data, indicating high trustworthiness. Overall, the site is credible and functional but could improve its security posture and privacy compliance to enhance user trust and regulatory adherence.

Detected Technologies

Tailwind CSSVue.js (implied by Nuxt.js references)Nuxt.jsCustom fonts (Noto Sans)Swiper.js (carousel)Date picker library

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Innosuisse operates as a government agency focused on fostering innovation in Switzerland. Its business model centers on providing financial support and advisory services to innovative projects and startups. The agency holds a strong market position as the official Swiss innovation partner, leveraging government resources and partnerships. The target audience includes Swiss entrepreneurs, researchers, and businesses seeking innovation funding and support. The website content and structure support this positioning, though explicit business details such as founding year or subsidiaries are not disclosed. The absence of visible contact details and policies suggests a focus on informational content rather than direct customer engagement via the website.

Security Posture Analysis

Comprehensive Security Assessment

The website currently exhibits a basic security posture. While HTTPS is presumably enabled (given the .admin.ch domain and standard government practice), no explicit security headers or policies are visible in the provided content. There is no evidence of vulnerability disclosure mechanisms or incident response contacts. The lack of privacy and cookie policies also indicates potential compliance gaps with GDPR and related regulations. No vulnerable libraries or exposed sensitive data were detected in the HTML content. To improve security maturity, the agency should implement comprehensive security headers, publish privacy and cookie policies, and provide clear incident response and vulnerability disclosure information.

Strategic Recommendations

Priority Actions for Security Improvement

Implement and publish a comprehensive privacy policy and cookie policy with consent mechanisms.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Innosuisse

Description:

Innosuisse is the Swiss Innovation Agency supporting science-based innovation in the interest of the economy and society. It acts as a partner for innovation, providing funding, coaching, and networking for startups and innovative projects.

Key Services:

Innovation fundingCoaching and mentoringNetworking and partnershipsSupport for startups and SMEs

Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:

Tailwind CSSVue.js (implied by Nuxt.js references)Nuxt.jsCustom fonts (Noto Sans)Swiper.js (carousel)Date picker library

Frameworks:

Nuxt.jsTailwind CSS

Performance:

moderate

Mobile:

good

Accessibility:

good

SEO:

basic

Security Assessment

Analytics & Tracking

Tracking Level:minimal

Privacy Compliance:poor

Advertising & Marketing

Transparency Level:poor

Website Quality Assessment

Design Quality:good

User Experience:good

Content Relevance:good

Navigation Clarity:good

Professionalism:good

Trustworthiness:high

Key Observations

Website is a Swiss government innovation agency site.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

65/100

Score

Weak Strict-Transport-Security configuration

LOW

Current value: "max-age=16070400; includeSubDomains"

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Weak Referrer-Policy configuration

LOW

Current value: "origin"

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

47/100

Score

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

70/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

SPF Details

Record:

v=spf1 redirect=_spfgroupa.admin.ch

DNS Lookups:0/10

DMARC Details

Policy:quarantine

Aggregate Reports:dmarc.rua@admin.ch

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

77/100

Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

90/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

DNS Records

A Records:162.23.130.190

Name Servers:

ins1.admin.chDNS only

ins2.admin.chDNS only

ins3.admin.chDNS only

ins4.admin.chDNS only

ins5.admin.chDNS only

MX Records:

10: mx01.mail.admin.ch

10: mx02.mail.admin.ch

10: mx03.mail.admin.ch

10: mx04.mail.admin.ch

SOA:Serial: 20225778, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:196ms

SPF Analysis

SPF Record:

v=spf1 redirect=_spfgroupa.admin.ch

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100

Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website uses a modern technology stack including Nuxt.js (Vue.js framework) and Tailwind CSS for styling, indicating a contemporary frontend architecture. The presence of Swiper.js suggests interactive carousel components. Custom fonts (Noto Sans) are used for typography. The site appears mobile-optimized and accessible with semantic HTML and ARIA considerations. However, no CMS or hosting provider information is explicitly detected. Performance is moderate based on the complexity of styles and scripts. SEO optimization is basic, with standard meta tags but no advanced structured data or Open Graph tags detected in the truncated content. Technical debt appears low, but improvements in security and privacy implementations are recommended.

How did we do?

Your feedback directly shapes our roadmap. Rate the quality of this report, leave an optional comment, and let us know if you want our security specialists to follow up.

Analyze Another Website

Is innosuisse.ch a Scam? Security Check Results - Innosuisse Reviews

Is innosuisse.ch Safe? Security Analysis for Innosuisse

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Weak Strict-Transport-Security configuration

Missing X-XSS-Protection header

Weak Referrer-Policy configuration

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Cookie Policy found

Privacy policy may not be GDPR compliant

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No vulnerability disclosure policy

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

SPF Details

DMARC Details

🏆SSL/TLS Security

SSL/TLS Security

Weak Protocols Supported

OCSP Stapling Not Enabled

Certificate Transparency Not Implemented

Partial SSL/TLS Assessment

Protocol Support

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

DNS Records

DNSSEC Status

DNS Performance

SPF Analysis

⚡Network Security

Network Security

Good Network Security Posture

🔧Technical Analysis

Technical Analysis

Additional Findings

—out of 5