It appears GlobalSign has issued an EV certificate containing dNSNames which include spaces which are non-valid DNS characters. This is a violation of CABF Baseline Regulations Sections 7.1.4.2.1. and presumably 3.2.2.4. since there is no way to confirm control of a non-valid DNS name.
Pre-certificate: https://crt.sh/?q=2d935bf09230c5ba9552c4ac5f0e6dd85e44fa2755819ade9a6f54beff7555de Certificate: https://crt.sh/?q=7b64ea5a8f0572c99e63cc36939163ff80ea9cd62d03d1fa661aeb0627ef8633 _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
