Nearly two months after a Department of Homeland Security deadline that all federal agencies implement a basic email security policy, one-third of agencies still have yet to implement that policy, according to recent data collected by Valimail.
DHS released their binding operational directive requiring agencies to use Domain-based Message Authentication, Reporting and Conformance, or DMARC, in October 2017, giving agencies until Jan. 15, 2018, to institute a p=none policy, which monitors but does not take any action on unauthorized emails sent through the agency’s server.
According to Jan. 16, 2018, Valimail data, only 54.7 percent of agencies met the initial DHS deadline. The new data brings that number up to 66 percent, but many agencies have yet to instate any DMARC policy less than a year away from an October 2018 DHS deadline that agencies move to a stricter, enforcement-based policy designated p=reject.
More
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.