8 Things you need to know about the Apple and BIMI announcement

Apple now supports BIMI (Brand Indicators for Message Identification) in iOS 16, as revealed in its iOS 16 features page and Support documentation. But what does this mean, and how does this impact you? In this blog we answer your questions; here are 8 things you need to know about the Apple and BIMI announcement. 

1. What does Apple’s announcement mean?

The AuthIndicators Working Group (BIMI Group) announced in June that Apple would support BIMI in iOS 16 and macOS Ventura. This means that users of Apple Mail will be able to see verified logos on emails sent by companies that are DMARC protected. This not only signifies a shift in attitudes towards standardization of secure email but will improve brand impressions and brand reach for businesses that adopt – or have already adopted – BIMI. 

2. Why is Apple’s support for BIMI important, and how can this be helpful to me?

Apple’s newly announced support for BIMI is exciting, and it signals a seismic shift in the importance of logo verification in email utilizing the VMC digital certificate. The announcement is important for a number of reasons: 

  • Apple’s support extends the reach of BIMI into a new mailbox provider and email clients
  • Apple’s support is a sign of increasing market confidence in BIMI
  • Apple’s native support in iOS expands adoption beyond just webmail clients and mobile apps (i.e. Yahoo/Google)
  • Apple will bring BIMI to many more consumers with this change
  • Apple is indicating support for email security and DMARC 

Apple is extending its support for BIMI by indicating in the header that mail is now “digitally certified” through the verification of BIMI with VMC. This is significant as a statement of trust in the sender of the message from that specific domain.  BIMI is in effect being used as a visual security signal.

The alert message shown when a user clicks the blue “Learn More” text

3. What is the timing for Apple’s support?

This is available now with the launch of iOS 16, with iPadOS 16 and macOS Ventura support coming in October.

“Apple’s adoption of the BIMI standard in macOS Ventura/iOS 16 in this first iteration sends a clear message to all mailbox providers; digitally certified email plays a pivotal role now, and the ability to display verified logos in the email will only become more important going forward.” 

Chuck Swenberg, SVP Strategy, Red Sift 

4. Will BIMI in Apple’s mail clients require a Verified Mark Certificate (VMC)?

Yes, this is the basis of their ‘digitally certified email’ message. Red Sift offers the only integrated BIMI and VMC solution in conjunction with Entrust. 

5. Will Apple’s support cover current BIMI mailbox providers like Google and Yahoo as well as mailbox providers like Microsoft and Comcast who do not yet participate in BIMI?

Apple has not yet said anything publicly, but our testing indicates that Apple’s support is for mail sent from BIMI and VMC-enabled domains to icloud.com addresses (as well as me.com and mac.com) only at this point.

Our assumption is that email recipients with @icloud.com, @mac.com, and @me.com addresses will see a BIMI logo from the sender. Any Apple user can create an iCloud email mailbox, but a smaller percentage actually use it as you can now create an Apple ID with a third-party email address.

6. How many icloud.com users are there vs. Apple Mail users (with any mailbox provider) generally?

There are no published figures for this and iCloud generally (backups, etc.) can mistakenly be conflated with icloud.com mailboxes.

7. Does the BIMI logo show up in the list view, and what might it look like? 

Apple has not said publicly. However, our testing indicates that it is available in both the list and message detail view on macOS Ventura and in the message detail view on iOS 16 as there is no logo slot supporting a list view capability.

It’s worth noting that email clients can change and as BIMI adoption grows we expect to see further enhancements to them. We at Red Sift will maintain coverage on the aspects of BIMI implementation through launch to ensure we remain a trusted source of information regarding VMC/BIMI.

8. Why is Red Sift best positioned to support Apple’s move to BIMI?

Apple’s support for BIMI means email security matters to them, and we’re moving closer to standardization with VMC support. This isn’t just a Google and Yahoo project, and the addition of Apple to the roster of the world’s largest email companies supporting BIMI builds continued momentum in the market. 

BIMI with VMC is the best way to ensure your logo is displayed in as many mailboxes and email clients as possible. Red Sift provides the only integrated solution to accomplish this quickly and efficiently.

At Red Sift, we offer the easiest way to display a verified logo in email, and we’re best placed to support your BIMI implementation for a number of reasons:

  • We offer the only integrated BIMI/VMC solution in the market making it easy for customers to enable BIMI regardless of their DMARC provider
  • We’ve been working with VMC longer than any other DMARC provider and have issued and implemented more VMCs than any other DMARC provider.

Our entire team of Customer Success, Sales, Marketing, and Product/Development is fully engaged in all aspects of DMARC/VMC (BIMI) implementation and support, meaning we can offer organizations: 

  1. More expertise & knowledge
  2. Greater levels of service and support
  3. A clear SLA for BIMI Implementation (no other provider offers this)

Red Sift and Entrust make email better with BIMI 

Apple’s adoption of BIMI is truly exciting, signifying a change in attitudes towards security and verification as standard practice in electronic communication. Our enhanced partnership with Entrust means we’re creating even more value by enabling organizations to manage their logo and obtain VMCs from Entrust directly through OnDMARC. This means it’s easier than ever for brands to ensure a safe, immersive experience for recipients of their outbound email.

Find out more about BIMI with our free resource pack or get in touch today to book your free consultation with the team, and get started on your journey to better email with BIMI. 

bimi resource pack

PUBLISHED BY

Chuck Swenberg

12 Sep. 2022

SHARE ARTICLE:

Categories

Recent Posts

VIEW ALL
Security

How to drive cybersecurity as a top business priority

Jack Lilley

Everyone has a role to play in protecting the enterprise. Whether you’re shaping strategy or implementing solutions, aligning efforts to mitigate critical risks ensures a stronger, more resilient enterprise. If you missed Red Sift’s recent webinar on “From Data to Buy-In: Driving Cybersecurity as a Top Business Priority” we’ve got you covered. The session…

Read more
DMARC

BreakSPF: How to mitigate the attack

Red Sift

BreakSPF is a newly identified attack framework that exploits misconfigurations in the Sender Policy Framework (SPF) a widely used email authentication protocol. A common misconfiguration involves overly permissive IP ranges, where SPF records allow large blocks of IP addresses to send emails on behalf of a domain. These ranges often include shared infrastructures like…

Read more
Certificates

Never miss an expiring certificate again with Red Sift Certificates Lite

Francesca Rünger-Field

SSL/TLS certificates are the backbone of secure, uninterrupted digital experiences—but managing them effectively to prevent downtime remains a persistent challenge. With browser and certificate authorities looking to reduce certificate durations to as little as 90 or even 47 days, keeping track of renewals has never been more critical. That’s why we’re excited to introduce…

Read more
DMARC

Navigating G-Cloud 14 for DMARC solutions: A guide for former NCSC Mail…

Francesca Rünger-Field

Navigating G-Cloud 14 for DMARC solutions: A guide for former NCSC Mail Check users With the NCSC discontinuing key features of its Mail Check service, including DMARC aggregate and TLS reporting, after March 2025, UK public sector organisations must prepare for this change by transitioning to alternative email security solutions. To support this shift,…

Read more