I just want to be able to use a verified domain; @example.com everywhere.

That still has "squatting" risks as described in the original article though, domains expire and / or can be taken over.

	▲	fc417fc802 3 hours ago \| parent [-]
		But you already have a domain for whatever you're doing so presumably that's going to be a threat either way. For particularly high risk activities if circumstances permit you can sidestep the entire issue by adding a layer of verification using a preshared public key. As an arbitrary example, on android installing an app with the same name but different signing key won't work. It essentially implements a TOFU model to verify the developer.