SVG-P/S

Expanded Definition

SVG-P/S, or SVG Portable/Secure, is a restricted SVG profile used when an organisation needs identity graphics that can be validated and rendered predictably across mail and security clients. In practice, it is a safety profile for brand assets such as BIMI logos, where the goal is not expressive artwork but a machine-checkable image with a narrow feature set. The profile typically excludes script, external references, and other behaviours that can create parsing ambiguity or security risk. That makes it closer to a controlled NHI artefact than a general web graphic.

Definitions vary across vendors and client ecosystems, and no single standard governs this yet. As a result, SVG-P/S is usually treated as an operational profile rather than a formal internet standard, with validation requirements shaped by mailbox providers, brand authentication workflows, and security review practices. For the broader control context, NIST’s NIST Cybersecurity Framework 2.0 reinforces the need for integrity and safe configuration of digital assets.

The most common misapplication is using a general-purpose SVG that still contains unsupported features, which occurs when teams optimise for visual fidelity instead of validation compatibility.

Examples and Use Cases

Implementing SVG-P/S rigorously often introduces design constraints, requiring organisations to weigh branding flexibility against deterministic rendering and safer automation.

• A security team prepares a BIMI logo so a receiving client can verify the image without executing scripts or following remote references.
• A brand operations team converts an existing marketing SVG into a constrained profile before publishing it for authenticated email display.
• An identity governance workflow checks that the logo file used for sender verification matches the approved asset referenced in the Ultimate Guide to NHIs.
• A mail security platform rejects an SVG that includes unsupported animation or embedded external content, forcing remediation before release.
• An infrastructure pipeline signs off on the final graphic only after it passes content restrictions aligned to NIST Cybersecurity Framework 2.0 expectations for protected assets.

These use cases matter because the image is part of the trust signal, not just a decorative file.

Why It Matters in NHI Security

SVG-P/S matters because identity graphics are often consumed automatically in trust decisions, especially when brand indicators reinforce mailbox authentication and sender legitimacy. If the file is malformed, overly complex, or inconsistently rendered, the result can be broken brand presentation, failed validation, or a weakened trust posture at the moment a recipient is deciding whether a message is legitimate. That is why NHI Management Group treats constrained identity artefacts as governance objects, not merely design files.

The wider risk picture is substantial: Ultimate Guide to NHIs reports that 96% of organisations store secrets outside of secrets managers in vulnerable locations including code, config files, and CI/CD tools, showing how often operational controls drift when assets are handled informally. The same pattern can affect approved graphics if ownership, validation, and change control are unclear.

Practitioners should also consider that constrained assets support zero trust-style verification, where the artefact must be reliably interpreted before it can be trusted. Organisations typically encounter the real impact only after a brand impersonation attempt or a failed client rendering event, at which point SVG-P/S becomes operationally unavoidable to address.