Speed ​​| Watt Speed

Description wattspeed

SEO of your website is essential, but without the performance of it, your efforts can be in vain.  It is to address this shortcoming that wattspeed was developed as a performance review tool for your website. To understand concretely how this tool works, I invite you to read this description until the end.

What is Wattspeed ?

It analyzes both real and synthetic user data, it will help you track your performance over time and give you insight into what you should do next. It offers captures of your web pages which includes Lighthouse scores from multiple locations, RUM via CrUX, a list of technologies used, W3C HTML validator results, DOM size, mixed content information, security audit , etc.

Home

page On the home page, important information is grouped together which will allow you to have a somewhat broad follow-up on the performance of your website. From the home page, you can quickly identify weak points that need improvement.  

General

overview The general overview gives you a more precise view of the URLs of underperforming pages that you need to put more effort into. This section offers you a detailed report of an in-depth analysis of the performance of your website. Here is some information found there:

• Average performance: Here you will find a history of the performance of all the web pages present on your website according to each device used by users to access your website;
• URL performance: In this category the tool displays the percentage of URLs detected, grouped by performance;
• Locations: This is the geographic location your URL was crawled from;
• Uptime: Here, we find the availability history of domain URLs;
• Monitored URLs: This section is for the pages you monitor.

Snapshots

When you set up a webpage for tracking, Wattspeed automatically runs an initial snapshot for you. Here’s how to run more snapshots so you can compare results over time:

• Instant execution using a URL based on web page API settings. So you have the option of applying a GET request with the idea that the tool performs an automatic execution when you deploy a website;
• Instant execution, but programmed. It just means you need to schedule a frequency that the Wattspeed should trigger new instant runs.

Continuous Integration (CI)

When you feel the need to monitor certain metrics of a web page after some changes have been made, you can quickly integrate Wattspeed into your Continuous Integration (CI) service:

• GitHub Action: The tool has a feature called ”GitHub Action” which considers instant executions as a step in your workflow;
• GitLab CI/CD: In .gitlab-ci.yml you can add a new item in the script section. For example, using curl, you will be able to make a GET request in order to find the parameters of each URL Wattspeed.

before_script: – apt-get update -qy – apt-get install -y curl script: – curl https://api.wattspeed.com/update?token=xxxxx

Jenkins plugin

The tool has a plugin called Wattspeed Jenkins which allows you to trigger a snapshot as a build step of your Jenkins project.

Security

This feature helps identify loopholes for attacks and other security issues that are preventing your website from ranking high on the SERPs. To illustrate this fact, SEJ mentions this study from GoDaddy which tells us that 73.9% of hacking events are linked to the SEO of the website. In some cases, these are attacks that aim to modify the content of sites through malicious links.  It would simply mean that these kinds of attacks prevent search engine crawlers from properly crawling your website.

Response headers

The security function ensures that the 6 response headers exist and allows to check if one of its headers has been sent by the server.  Regarding the evaluation of headers, the tool assigns a rating so the lowest is F and the highest is symbolized by A+. The marks are made up according to the following score:

• A+ for a score equal to or greater than 100;
• A for a score equal to or greater than 75;
• B for a score equal to or greater than 60;
• C for a score equal to or greater than 50;
• D for a score equal to or greater than 20;
• E for a score equal to or greater than 10;
• F for a score of 0 or greater.

Security headers are scored as follows:

• Strict-Transport-Security adds 25 points;
• Content-Security-Policy adds 25 points;
• X-Frame-Options adds 20 points;
• X-Content-Type-Options adds 10 points;
• Referrer-Policy adds 10 points;
• Permissions-Policy adds 10 SSL points

The SSL

testing feature is to perform security checks like certificate chain and server configuration. In terms of SSL evaluation, it is assigned a score from A+ to F in addition to an additional mark (T) to qualify the nontrust of a certificate is not trusted.  Grades are awarded as follows:

• A+ for a score equal to or greater than 95;
• A for a score equal to or greater than 80;
• B for a score equal to or greater than 65;
• C for a score equal to or greater than 50;
• D for a score equal to or greater than 35;
• E for a score equal to or greater than 20;
• F for a score of 0 or greater.

An incorrect certificate with any of the following issues may result in a score of 0:

• Certificate not yet validated;
• Expired certificate;
• Host name mismatch;
• Use of an untrusted certificate (unknown CA or other validation error);
• Using a self-signed certificate;
• Insecure key;
• Signature of insecure certificates (MD2 or MD5).

To evaluate the protocols here, the tool relies on the versions of TLS supported by the server. But, since there can be multiple TLSs, the score is determined by the average between the best and the lowest. Protocol support rating:

• TLS 1.3 has a rating of 100;
• TLS 1.2 has a rating of 100;
• TLS 1.1 has a rating of 40;
• TLS 1.0 has a rating of 40.

Ratings are assigned to ciphers based on counterattack capabilities Ciphers are rated based on strength against an attacker’s effort across the set of protocols.  Since there can be multiple ciphers for each protocol, the score is determined by the average between the best and the weakest. Cipher strength level:

• STRONG has a rating of 100;
• SECURE has a rating of 100;
• LOW has a score of 80;
• INSECURE has a score of 0

Score Changes:

• The server is using an invalid certificate: This means the score has been changed to T;
• The server uses insecure ciphers: Which indicates that score changed to F;
• The server does not support TLS 1.3 or TLS 1.2: Arguably, the score is capped at C;
• The server supports TLS 1.1 or TLS 1.0: Here the score is capped at B.

In general, if you want to get better performance from your website, Wattspeed can be an effective option.