March 8, 2023
BIMI (Brand Indicators for Message Identification) is a new standard designed to help email receivers verify the authenticity of emails from a visual point of view. Being an email authentication protocol, it enables senders to display their logos in the recipient's inbox, providing visual confirmation that the message is authentic. BIMI builds upon existing email authentication protocols like SPF, DKIM, and DMARC, adding an additional layer of verification that allows email receivers to check the authenticity of the sender's logo and display it in the recipient's inbox.
DKIM (DomainKeys Identified Mail) and BIMI are both email authentication standards, but they serve different purposes.
DKIM is a method for verifying that an email message was actually sent by the domain that it claims to be from, and that the message hasn't been tampered with during transmission. DKIM involves adding a digital signature to the header of an email message, which is then verified by the recipient's email server to ensure that the message is legitimate.
BIMI is a standard for displaying brand logos in email messages. BIMI allows email senders to include a verified logo image in their email messages, which is then displayed in the recipient's inbox next to the message. BIMI requires DKIM authentication to be set up before the logo can be displayed.
To make short, DKIM is a method for email authentication and message integrity that mainly remains in the backend of an email application process, while BIMI is a standard for displaying brand logos in email messages, so it is raised to the frontend of the email application. While DKIM is a prerequisite for BIMI, they serve different purposes and are used in different parts of the email ecosystem.
On top the verification mark, the TXT record for the email domain must also include the brand's Verified Mark Certificate (VMC). The VMC is a digital certificate that confirms the ownership of the brand logo used in the BIMI record. The DNS TXT record should be published at the root of the domain, and its content should be a URL that points to the logo image file.
Today, the BIMI standard requires the logo to be a registered trademark to get a VMC; this long and costly process probably explains why BIMI does not arouse general enthusiasm so far. However, the standard is being expanded to include logos that aren’t trademarked.
When an email is received, the email receiver will perform the following steps to validate the BIMI record:
Even though one may have set up everything according to the BIMI requirements, there is still no guarantee that the logo appears in an inbox. Finally, it very much depends on the receiver, as not all email service providers support this feature yet. This means that they do not offer the possibility to have logos shown in an inbox by default. And even though the number is growing, some of them still need some time to adopt BIMI. Also, the ones that do support BIMI have their own rules about whether or not to show the logo, such as Google.
BIMI provides several benefits, including:
While some people could argue on the fact that BIMI is just another marketing stuff, it is a standard developed by industry leaders to help validate the authenticity of email messages using an email provider's logo. BIMI can indeed be used as a marketing tool, however it is primarily a security measure to prevent email fraud and phishing attacks. This provides an extra layer of security for email recipients, as they can quickly identify legitimate messages from trusted senders.
Therefore, on top of some marketing benefits, it is primarily a security standard that helps ensure the integrity of email communications. Nevertheless, it has not yet been widely adopted. There are several reasons for this:
Overall, while BIMI has potential benefits, its lack of widespread adoption may be due to a combination of technical complexity, limited impact on email deliverability, and lack of support from email clients. However, as more email clients support the standard and awareness of its benefits increases, we may see greater adoption of BIMI in the future.
Learn more on how LetzRelay-MX can help your organization be secured with Internet inbound emails.