What Is BIMI?
Understanding BIMI (Brand Indicators for Message Identification) and brand protection
Table of Contents
What Is BIMI?
BIMI (Brand Indicators for Message Identification) is an email authentication standard that allows brands to display their logos in email clients. BIMI enables email clients to show verified brand logos next to authenticated emails, providing visual brand identification and trust.
BIMI requires: DMARC policy set to quarantine or reject, verified brand logo (SVG format), and BIMI record published in DNS. BIMI works with DMARC to provide brand protection - only emails that pass DMARC authentication can display BIMI logos.
BIMI enhances email security by providing visual verification of authenticated emails and helps recipients identify legitimate emails from trusted brands. Learn more about DMARC and DMARC policies.
BIMI Purpose
Brand Identification
BIMI provides visual brand identification in email clients, helping recipients identify legitimate emails from trusted brands.
Brand Trust
Verified brand logos increase trust and recognition, making it easier for recipients to identify authentic emails.
Brand Protection
BIMI protects brands by ensuring only authenticated emails can display brand logos, preventing brand spoofing.
Email Security
BIMI enhances email security by providing visual verification that emails are authenticated and legitimate.
User Experience
BIMI improves user experience by making it easier to identify trusted senders and legitimate emails.
BIMI Requirements
1. DMARC Policy
BIMI requires DMARC policy set to quarantine or reject. none policy is not sufficient for BIMI.
2. Brand Logo
BIMI requires verified brand logo in SVG format, meeting specific size and format requirements.
3. BIMI Record
BIMI record must be published in DNS as TXT record at: default._bimi.example.com
4. Logo Verification
Brand logos may need to be verified through BIMI logo verification services (VMC - Verified Mark Certificate).
5. Email Client Support
BIMI requires email client support. Currently supported by Gmail, Yahoo Mail, and other major email clients.
BIMI and DMARC
DMARC Dependency
BIMI depends on DMARC - only emails that pass DMARC authentication can display BIMI logos.
DMARC Policy Requirement
BIMI requires DMARC policy to be set to quarantine or reject, ensuring strong email authentication.
Authentication Flow
Email authentication flow: SPF/DKIM check → DMARC evaluation → DMARC pass → BIMI logo display.
Brand Protection
BIMI and DMARC work together to provide comprehensive brand protection, ensuring only authenticated emails display brand logos.
Implementation Order
Implement DMARC first, then add BIMI after DMARC is working correctly with quarantine or reject policy.
Implementing BIMI
1. Set Up DMARC
First, set up DMARC with quarantine or reject policy. Use our DMARC lookup tool to verify DMARC configuration.
2. Create Brand Logo
Create brand logo in SVG format meeting BIMI requirements (size, format, verification).
3. Verify Logo
Verify brand logo through BIMI logo verification services if required by email clients.
4. Publish BIMI Record
Publish BIMI record in DNS: default._bimi.example.com TXT "v=BIMI1; l=https://example.com/logo.svg;"
5. Test BIMI
Test BIMI by sending emails and verifying logos display correctly in supported email clients.
6. Monitor Results
Monitor BIMI implementation to ensure logos display correctly and DMARC authentication is working.
