Yeah, the idea was to validate my VMC ”logo” - https://sebbe.eu/bimi/face.svg - with my passport or ID card instead.
This should allow the CA to effectively skip the whole ”are the guy asking for a certificate authorized to act on behalf of [company name]” while still verifying the ”logo” belongs to me. Its literally only comparing a passport or ID card to a SVG file and then validating domain ownership, nothing more. So thats why im asking if there is a process. In the same way StartSSL ”skipped” the whole OV process for individuals, allowing them to get certificates normally restricted to organizations only, for individuals with a simple ID check. I remember I got a code signing and wildcard SSL website certificate with my full legal name in it, by just sending in my passport, ID-card and then a registration document (population record extract and tax records) from my local government. Guess CA’s no longer can make such ”exceptions” right now with the CA/B right, even if they are structurally and security-wise sound? Is there a way to send suggestions to CA/B forum to implement a personal VMC certificate? Från: Owen Smigelski <[email protected]> Skickat: den 18 november 2025 22:23 Till: Sebastian Nielsen <[email protected]> Kopia: Mailing List <[email protected]> Ämne: Re: [mailop] VMC/BIMI - Getting a personal VMC certificate? I am not aware of a VMC without trademark registration. Digicert requires it (https://docs.digicert.com/en/certcentral/manage-certificates/verified-mark-certificates--vmc-.html) and I’m not sure if other vendors allow for VMC without a legally registered trademark. It can also be a painful process- you need just the logo in the registration (and not any words or anything that will not appear in the verified mark), and the people at DigiCert are very nice but if you go slightly out of their defined process it really confuses them. My company does not have a main telephone number and although we finally got our VMC, it took a lot of back and forth to convince them to do another process other than calling our non-existent main telephone number. They found a number in Zoominfo which they claimed was (a) accurate and (b) authoritative. I had to explain to them that both points were wrong. Regards, Owen On Nov 18, 2025, at 12:05, Sebastian Nielsen via mailop <[email protected] <mailto:[email protected]> > wrote: CAUTION: This email originated from outside the organization. Do not click links unless you can confirm the sender and know the content is safe. Im currently experimenting with BIMI on my domain sebbe.eu <http://sebbe.eu/> But I wonder, is there any possibility to get a VMC without a trademark registration. I mean, all the CA needs to do is to compare the SVG with for example a passport or ID card or similiar. So they don’t need to check if im authorized to act on behalf of a company, or look up trademark details and such. So there should be a process with much less hassle, and less cost too. Anyone has any ideas? Or if they know a CA that wants to issue VMC certificates to non-corporations? (was a bit tricky to get the SVG below 32 kB but with some work it went well and looks GREAT too). Or maybe the working group behind BIMI could include support for a personal BIMI certificate, called a PMC – Personal Mark Certificate – where the SVG must be sufficently similiar to your passport/ID card. Best regards, Sebastian Nielsen ******************** CAUTION: This email originated from outside the organization. Do not click links unless you can confirm the sender and know the content is safe. ******************** _______________________________________________ mailop mailing list <mailto:[email protected]> [email protected] <https://list.mailop.org/listinfo/mailop> https://list.mailop.org/listinfo/mailop
_______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
