FWIW we went through the trademark process for our logo. It was time-consuming, but straightforward and not expensive.
We've deployed BIMI, but with a=<blank> as the SSL certificates are still quite expensive; Digicert's BIMI certificate is half-again as much as their EV certificate. If Digicert et. al. offered a combined EV/BIMI certificate (since much of the labor-intensive validation tasks as I understand it are identical for both certs), I think that could be an attractive option for many senders. IMHO the industry has several complementary/overlapping initiatives at various stages of maturity and adoption, all intended to better authenticate senders and prevent domain spoofing. I fully expect there to be friction, resistance and bumps in the road as we all work to minimize illegitimate email -- but despite Google, Yahoo, Microsoft etc. being a major source of the inbound spam that we see tour and our customers' systems, I applaud their efforts to better authenticate senders and prevent domain spoofing. I just wish they would apply the same strict rulesets to their outbound email streams that they are starting to apply/applying to their inbound email streams... Best regards to all, Mark _________________________________________________________________ L. Mark Stone, Founder North America's Leading Zimbra VAR/BSP/Training Partner For Companies With Mission-Critical Email Needs ----- Original Message ----- From: "Laurent S. via mailop" <[email protected]> To: "mailop" <[email protected]> Sent: Thursday, January 11, 2024 9:34:16 AM Subject: Re: [mailop] BIMI boycott? Lookup tool, why we publish BIMI anyway, and intellectual property law considerations On 11.01.24 14:59, Udeme via mailop wrote: > There’s a trademark ownership vetting item that’s part of BIMI implementation. > Not just *anyone* can get past that. #wink > The trademark verification is only for those that pay for it. Nothing forbids a MUA from displaying an unverified BIMI. Most are luckily not doing it (yet), I just want to warn that if this becomes common, it will be abused for sure. I don't think that the regular user will check if the little extra lock is there on the icon. They'll see a version of the paypal logo on the phish and have an extra feeling of safety. Best, Laurent _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
