top of page

CAA Records & Verified Sender Checkmark

At Millionaire.email, domain trust begins at the certificate level.

We enforce CAA (Certification Authority Authorization) DNS records to restrict which certificate authorities are permitted to issue SSL/TLS certificates for our domain. This prevents attackers or unauthorized parties from generating fraudulent certificates — protecting against domain forgery and impersonation.

In addition to securing the domain, we also protect individual identity.

Millionaire.email supports S/MIME (Secure/Multipurpose Internet Mail Extensions) certificates for verified users. These certificates allow emails to be:

  • Digitally signed to prove sender authenticity

  • Encrypted to ensure content privacy

  • Visibly marked with a verified sender checkmark in supported email clients like Apple Mail, Outlook, and others

This checkmark signals to recipients that the message came from a verified identity tied to a trusted certificate, reinforcing email legitimacy.

While BIMI (Brand Indicators for Message Identification) is supported for displaying branded logos in inboxes, the verified checkmark in our system currently comes through S/MIME, not BIMI — as VMC (Verified Mark Certificate) is not yet applied.

bottom of page