Conversation

Daniel Micay
@DanielMicay
Replying to
@DanielMicay
They present it as if it's a way of encouraging adoption of DMARC. Gmail doesn't use an enforcing DMARC policy yet so it fails their own check for BIMI readiness. Perhaps fix that and add proper authenticated transport encryption support for Gmail instead of this silly nonsense.
1
5
Daniel Micay
@DanielMicay
The SVG Tiny Portable/Secure format is neat though. It's a further restricted form of SVG Tiny 1.2 created as part of the BIMI standard. datatracker.ietf.org/doc/html/draft Talked about this with
@RichFelker
last year right before this new standard was available:
Quote Tweet
Daniel Micay
@DanielMicay
Replying to @DanielMicay and @RichFelker
The full specification of SVG 2 does actually have the concept of secure and static modes: w3.org/TR/SVG2/confor 'Secure static mode' disables external references, scripts, declarative animation and interactivity. It's still an insanely complicated specification though.
1
6
Daniel Micay
@DanielMicay
SVG Tiny Portable/Secure is SVG Tiny 1.2 without scripts, animations, interactivity, external references of any kind or x/y attributes in the root element. Most tools don't support it yet so you need to export the most minimal supported format and manually convert. It's easy.
2
2
Daniel Micay
@DanielMicay
SVG Tiny Portable/Secure is a sane vector image format which is certainly not what you'd expect from anything called SVG at this point. BIMI itself seems really stupid but at least something good came out of them standardizing this. Should start pushing SVG Tiny PS elsewhere.
1
3