On 10/01/2024 19:18, Jaroslaw Rafa via mailop wrote:
As the OP has written, the only ones that may be interested in this may be marketers. Nobody else needs any logos, avatars etc. displayed alongside the email headers.
That is certainly an overly bold claim. For a lot of people it makes navigating the inbox easier and nicer to look at, it also does make phishing a bit harder. We've yet to see how much harder because the deployment percentage of good DMARC, not to mention BIMI+VMC, is quite low.
Also, I see no feasible way - neither now nor in the future - to use it any meaningful way in person-to-person communication, which is the topic OP asked about, and you seem to have ignored it completely in your answer
It's not really designed for that. It could happen in the form of adding the logotype OID to S/MIME certificates, but S/MIME is not that far along - the new S/MIME baseline (by the CA/B Forum S/MIME workgroup) is really new, and that's just the baseline. Maybe in the future.
Is the goal to make email a closed ecosystem in which only the big players can participate?
For context, we at Zone Media have implemented BIMI in our mail server and web email client, we have also published a BIMI record with VMC. I'd say it's far from being something only "big players" can participate in, unless you consider us a big player...
Verifying identity is a difficult problem, maybe it doesn't work out in this exact form or way, but it's empirically evident that the problems BIMI tries to address are real. Boycotting it for the cost is as silly as boycotting entire S/MIME for the same reason.
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
