VMC (Verified Mark Certificate)
A verified mark certificate (VMC) is a digital certificate issued by a trusted CA that is used to verify logo ownership, which allows senders to display their company logos directly next to the “sender” field in email messages for recipients to be confident that the email comes from a legitimate brand. The VMC helps companies and brands protect against phishing and fraud attacks, and improves communication efficiency with customers. NicSRS now offers DigiCert and Entrust VMC.
How VMC Works
Logo-verified email with VMC is part of a groundbreaking initiative by Brand Indicators for Message Identification (BIMI) in cooperation with email client providers (Gmail), aimed at providing companies and customers with a consistent, trusted and verifiable email experience. Here’s how it works.
1
Purchase a VMC
A VMC is the only way to display brand logo on verified emails.
2
DMARC enforced
Before you can display your logo, email clients must be able to validate that the company is enforcing DMARC standards, which can render your company more control over emails so as to reduce phishing and spoofing attacks.
3
Upload verified logo
The trademarked logo can be uploaded and displayed in email clients after DMARC enforcement. If you have multiple logos, you can choose the corresponding logo for each communication flow.
Emails without VMC
Recipients only see default initials
Display brand logo
Emails with VMC
Recipients see verified brand logos
Why Choose VMC
Promote Brand Image
Use VMC to display company logo directly next to each email message, boosting your brand image.
Enhance Brand Reputation
VMC provides a consistent, trusted and verifiable email experience to customers who are usually more willing to trust and work with enterprises that value email security.
Increase Email Engagement
VMC helps to make your emails stand out in customer inboxes and increase open rates, recall and the likelihood of purchase.
Reduce Phishing and Spoofing Risks
By complying with DMARC, it shows that your company follows the highest level of email security practice, making it harder for cybercriminals to target your customers with identity-focused attacks like spoofing and phishing.
Improve Email Security
Using VMC and enforcing DMARC can help you get better visibility and control over the emails sent and received by your domain, and gain clear insight into the types and frequency of attacks targeting your domain.
Increase Email Deliverability
Complying with DMARC means your emails won't be easily marked as spams because recipients can see your verified logo directly which ensures the authenticity and legitimacy of the email source. It also allows customers to associate trust with your email communication and spikes email open rates and engagement.
Obtain a VMC in 5 Steps
Before you can qualify for a VMC, your organization needs to meet the following requirements to validate the domain and brand identity.
Implement DMARC standards
Trademark your logo
Convert your logo file to the .SVG format
Purchase a VMC
Install your VMC
Check Out Popular SSL Certificates
VMC FAQs
QWhat is DMARC?
A
According to DMARC. org: DMARC, which stands for Domain-based Message Authentication, Reporting & Conformance, is an email authentication, policy and reporting protocol. It builds on the widely deployed SPF and DKIM protocols, adding linkage to the author (“From:”) domain name, published policies for recipient handling of authentication failures, and reporting from receivers to senders, to improve and monitor protection of the domain from fraudulent email.
In short, DMARC provides security professionals with greater transparency and greater control over the emails sent and received by their domains, as well as the ability to identify, prevent or block potentially fraudulent emails. DMARC helps protect customers and brands from phishing and spoofing attacks.
QWhat's the difference between BIMI and VMC?
A
BIMI, which stands for Brand Indicators for Message Identification, is an email standard that strengthens sender authentication and enables email inboxes to display the trademarked logo. VMC validates that the trademarked logo belongs to your legitimate organization. A VMC needs to be associated with a BIMI record as a tamper-resistant security measure.
QHow VMC helps to improve email trust?
A
A VMC guarantees the authenticity of your brand and logo working alongside BIMI and DMARC, and improves email trust. After your organization implements DMARC, the VMC can enable email clients to display brand logos directly to prevent business impersonation.
QHow to install a VMC?
A
You can apply for a VMC from DigiCert or Entrust if your logo has been registered as a trademark. After you have obtained a VMC, you’ll receive a file containing a PEM-encoded certificate chain. Please place the logo file (.SVG format) and the certificate (PEM file) to publicly accessible https server, make a note of their path and paste the URL into the BIMI record.
QHow to encrypt email messages?
A
S/MIME certificates provide digital signatures and email encryption that can ensure the authenticity, non-repudiation, integrity and confidentiality of emails, effectively preventing against email tampering and phishing attacks.
QWhich email providers support BIMI?
A
Currently BIMI is supported by a few email providers - Gmail, Fastmail, Yahoo Mail, AOL, Netscape and Apple Mail.
