In this constantly changing world of email security, businesses are constantly trying to find ways to authenticate their communications and improve their brand’s visibility. One new technology that addresses these needs is BIMI, or “Brand Indicators for Message Identification”. BIMI not only improves email security but also improves brand recognition. In this post, we’ll explore what BIMI is, how it works, and why it’s a valuable addition to your email security strategy.

What is BIMI?

Brand Indicators for Message Identification (BIMI) is an email authentication protocol that allows companies to display their brand logo next to their email messages in recipients’ mailbox. This visual indicator will help users quickly identify legitimate emails from trusted sources, reducing the risk of phishing and increasing brand visibility.

How Does BIMI Work?

1. Before implementing BIMI, you need to you have all the other email authentication types in place, such as SPF (Sender Policy Framework), DKIM (DomainKeys Identified Mail), and DMARC (Domain-based Message Authentication, Reporting, and Conformance). BIMI relies on these being in place correctly to ensure that the email is authenticated and has passed security checks.

2. Next create a BIMI DNS record and publish it to your DNS (Domain Name System). This record contains a link to the brand’s logo, which will be displayed alongside authenticated emails and should be an SVG image.

3. The recipient’s email server then checks the BIMI record and gets the logo specified in the record.

4. The recipient’s email server then checks the image with the published VMC certificate. This step is still new and may not be supported by all email servers.

5. If the image and the VMC are valid then the email client displays the logo next to the email, provided that the email passes SPF, DKIM, and DMARC checks.

Why is BIMI Important?

1. BIMI helps your company brand stand out in customers inboxes by displaying your logo, making your emails more recognizable and reinforcing your brand.

2. By providing your logo, BIMI helps recipients distinguish legitimate emails from fraudulent ones, reducing the likelihood of phishing attacks.

3. Showing a verified brand logo next to your emails increases trust and credibility with your customers, leading to better engagement and open rates.

How to Implement BIMI

1. First make sure that your domain is correctly set up with SPF, DKIM, and DMARC. BIMI requires these protocols to be in place and configured correctly.

2. Create a logo or use an existing on that meets the BIMI specifications (i.e., SVG format, square) and host it on a secure server that is publicly accessible.

3. Create a BIMI record using a service like MonitorDMARC and add the record to your DNS. This record should include a reference to the URL where your logo is hosted and the VMC.

4. Regularly check your BIMI record to ensure that it’s working correctly and that your logo is showing as expected. Use BIMI verification tools such as MontiorDMARC to confirm that your setup is accurate. Also using a third party service like MonitorDMARC you can monitor your BIMI record for changes.

5. Some email clients and providers may have specific requirements or processes for displaying BIMI logos. Make sure you meet their criteria to successful display your logo.

Conclusion

BIMI is a new and powerful tool that enhances email security and brand visibility by displaying your logo next to authenticated emails. By implementing BIMI, you not only help protect your brand from phishing attacks but also make your emails more recognizable and trustworthy to customers. For a successful BIMI implementation, ensure all of your email authentication protocols are in place and follow best practices for logo design and DNS configuration. Third party services like MonitorDMARC can help you with both implementation and monitoring.