Home/ Glossary/ Brand Indicators for Message Identification

Brand Indicators for Message Identification (BIMI)

Security Glossary - Email Authentication

Definition: BIMI is an email standard that allows brands to display their verified logo next to authenticated emails in supporting mail clients. It requires a published BIMI record in DNS pointing to an SVG logo, a DMARC policy of quarantine or reject, and (for Gmail) a Verified Mark Certificate (VMC) from a qualified CA.

Why You Should Care About BIMI

BIMI provides a tangible incentive for implementing strong email authentication. When your domain has DMARC enforcement and a BIMI record, your brand logo appears alongside emails in supporting clients (Gmail, Yahoo, Apple Mail). This visual indicator increases brand recognition and recipient trust.

BIMI is not just cosmetic - it requires DMARC enforcement (p=quarantine or p=reject) as a prerequisite. This means enabling BIMI also means you have deployed the most effective email authentication available. The logo display is the reward for doing email security properly.

The main barrier to BIMI adoption is the Verified Mark Certificate (VMC) required by Gmail. VMCs cost around $1,500/year and require trademark registration. Other providers like Yahoo and Apple Mail display BIMI logos without a VMC. For smaller organizations, the VMC cost may not be justified, but having the DMARC prerequisite in place is still valuable.

Testing Your Configuration

A DNS health checker shows whether you have a BIMI record. The prerequisites are: DMARC with p=quarantine or p=reject, a BIMI TXT record at default._bimi.yourdomain.com, and an SVG logo in the required format.

Check DNS Health

Questions and Answers

Do I need BIMI?
BIMI is optional but valuable for brand visibility. The real benefit is that it requires DMARC enforcement, which protects against email spoofing. If you have already deployed DMARC with p=reject, adding BIMI is a relatively small additional step.
How much does BIMI cost?
The DNS record and SVG logo are free. Gmail requires a Verified Mark Certificate (VMC), which costs around $1,500/year and requires a registered trademark. Yahoo and Apple Mail display BIMI logos without a VMC.

Learn More

Domain-based Message Authentication, Reporting and Conformance DMARC Policy Types Sender Policy Framework DomainKeys Identified Mail Email Deliverability
Disclaimer: DomainOptic provides automated informational scans only. Results do not constitute professional security advice, compliance certification, or a guarantee of security. Always verify findings independently.