New figures from email authentication firm, Valimail, suggest that 55% of federal email domains have installed email security tool DMARC, following a DHS directive in October. The figures found, though, that DHS is lagging behind with only 15% of its own domains currently compliant.
DMARC is an email validation program designed to protect against email spoofing and the DHS directive due in Jaunary, (BOD) 18-01 requires all agencies to publish a basic DMARC record in monitoring mode, which will collect data on how the domain is being used by email senders.
The latest figures, published on January 16, showed that 706 out of 1,315 federal .gov domains had a DMARC record, meaning that federal government already has a higher rate of DMARC deployment than most other sectors, according to Valimail.
A separate study published by authentication firm, Agari in December, also found that 23 agencies had achieved 100% deployment including NASA and the Federal Elections Commission.