Subscribe to the Non-Human & AI Identity Journal

Forums
The Non-Human & AI ...
NHI, AI & IAM Suppo...
Verified mark certi...
 
Notifications
Clear all

Verified mark certificates in inboxes: what IAM teams need to know

 
    Last Post
  RSS

 NHI Mgmt Group
(@nhi-mgmt-group)
Member Moderator
Joined: 1 year ago
Posts: 7820
Topic starter 24/06/2026 10:53 pm  

TL;DR: Verified Mark Certificates let organisations display trademarked logos in email clients, but the Gmail BIMI pilot showed that trademark status, SVG format, notary verification, and enforced DMARC all have to line up before a logo can appear, according to DigiCert. For identity teams, the real lesson is that email trust is governed by control dependencies, not branding alone.

NHIMG editorial — based on content published by DigiCert: Getting Your Logo in Your User's Inbox, Tips Learned from the VMC Gmail Pilot

Questions worth separating out

Q: How should organisations prepare for Verified Mark Certificates in email?

A: Start with domain authentication, then move to brand and certificate prerequisites.

Q: Why do DMARC policies matter for inbox logo trust?

A: DMARC policies matter because they prove the organisation can control spoofed mail at the domain level.

Q: What breaks when certificate prerequisites are handled separately from brand governance?

A: Requests stall when legal ownership, logo format, and requestor validation are not coordinated.

Practitioner guidance

  • Map every sending domain to a DMARC enforcement state Confirm which domains are at p=quarantine or p=reject, then resolve any subdomain or subsidiary exceptions before requesting a VMC.
  • Treat trademark ownership as a prerequisite control Verify that the logo is registered in an eligible jurisdiction and that legal records match the entity requesting the certificate.
  • Standardise logo and certificate intake evidence Require the SVG Tiny 1.2 asset, proof of trademark status, and validated requester identity in a single approval package.

What's in the full article

DigiCert's full blog covers the operational detail this post intentionally leaves for the source:

  • The exact VMC preparation steps for trademark, logo format, and notary validation.
  • The pilot lessons that explain why requests fail when prerequisites are incomplete.
  • The practical checklist for becoming DMARC compliant before certificate issuance.
  • The educational webinar path for teams that want direct vendor guidance on the process.

👉 Read DigiCert's guidance on preparing for Verified Mark Certificates →

Verified mark certificates in inboxes: what IAM teams need to know?

Explore further

View Full Forum →  |  NHI Foundation Course →



   
Quote
Topic Tags
digicert email-security dmarc certificate-lifecycle brand-trust
Forum Jump:
  Previous Topic
Next Topic  
Related Topics
Topic Tags:  digicert (375) , email-security (26) , dmarc (16) , certificate-lifecycle (91) , brand-trust (3) ,
Share:

#1 Authority in NHI Education, Research and Advisory, empowering organizations to tackle the critical risks posed by Non-Human Identities (NHIs), including AI Agents.

Get in Touch

Quick Links

Legal & Policies

©2025 NHIMG. All right reserved.