Testing for Use of a Broken or Risky Cryptographic Algorithm