Is this X509 Subject field, with no space between ‘jurisdiction’ and an RDN, correctly formatted?
I recently purchased a new EV certificate (having previously used an OV certificate) and have successfully used it to sign my files.
However I'm getting a lot of warnings from Microsoft Defender about low trust levels on the file and the users of my software are unable to install it without jumping through hoops.
The Publisher that Defender shows looks suspect to me:
That's:
Publisher: GB, Private Organization, 07922175, GB, Nuneaton, elsten software limited, elsten software limited
The name of my company is elsten software limited so shouldn't it just show that? I'm worried we've lost reputation because the above is not matching our company name.
In the public key, the Subject field is formatted as so:
Subject: jurisdictionC = GB, businessCategory = Private Organization, serialNumber = 07922175, C = GB, L = Nuneaton, O = elsten software limited, CN = elsten software limited
The jurisdictionC bit looks suspicious - could the lack of whitespace, or the presence of jurisdiction mean the Subject isn't being parsed correctly?
When the app is run, the certificate warning screen shows the publisher correctly:
Also, if I show the Certificate details on the file from Windows Explorer it looks correct:
So is the certificate correct, but I just need to build some reputation? Or could Defender be parsing the certificate's Subject line differently and failing to match the reputation as a result?
For the purposes of code signing, do we only need to get a new public key certificate if this is wrong?
