From: Federal Times
As of Jan. 15, all government agency domains are required to have Sender Policy Framework (SPF) and Domain-based Message Authentication, Reporting and Conformance (DMARC) records in place, according to an October 2017 order issued by the U.S. Department of Homeland Security — a major step in governmentwide cybersecurity.
SPF is a way of authenticating an email sender and detecting spoofing. Incoming emails are checked to ensure that they’re from a system authorized to send for that domain. If someone tries to spoof the “from” address, then the email is flagged.
Leave a Reply