The Skysnag Blog


January 20, 2023  |  2 min read

The Department of Homeland Security (DHS) released BOD 18-01 on October 16, 2017.

Binding Operational Directive 18-01 (BOD 18-01), for example, mandates that federal government entities improve their email security to adopt industry-wide security standards such as STARTTLS, SPF, DKIM, and DMARC.

DMARC is a system that protects citizens and government entities from email threats. It prevents cyber criminals from exploiting citizens through phishing tactics and scammers from impersonating government agencies to commit fraud.

Organizations must have a DMARC record in place and a DMARC policy configured to reject by October 2018. This is an extremely ambitious timeframe, especially if a government organization’s domains, email systems, and technology are sophisticated.

How to meet BOD 18-01

Implementing DMARC and moving to p=reject

The first step is straightforward: create a DMARC record with a p=none policy; however, anything less than p=quarantine or p=reject policy invites scammers in.

Skysnag understands how important email is to your agency’s critical business activities and how complicated it can be. We understand the issues you should be aware of, as well as the crucial path that will lead your organization to reject.

Skysnag has the technical solutions and experience to guarantee that you get the most out of BOD 18-01 and DMARC adoption.


Unlike other systems that rely on simple authentication procedures or try to detect malicious information, Skysnags Phishing defense takes a holistic approach to sender identity. It identifies, isolates, and stops email assaults that rely on identity deception by using expert systems and machine learning to construct and deploy trust and authenticity models.

Skysnag’s automated software safeguards your domain’s reputation and keeps your business away from compromised business emails, password theft, and potentially significant financial losses. Unlock insights, bypass email authentication configuration issues including SPF and DKIM; and protect your domain from spoofing with strict DMARC enforcement, all autonomously with Skysnag. Get started with Skysnag and sign up using this link for a free trial today. 

Enforce DMARC, SPF and DKIM in days - not months

Skysnag helps busy engineers enforce DMARC, responds to any misconfigurations for SPF or DKIM which increases email deliverability, and eliminates email spoofing and identity impersonation.

Check your domain’s DMARC security compliance