Only 47.2% of Government Domains Have DMARC

Email security analysis of 69,892 public-sector entities across 51 U.S. jurisdictions

75.9% SPF adoption across 35,862 unique public-sector domains — basic authentication is widespread
Only 47.2% DMARC adoption — more than half of government domains lack enforcement-level protection
Higher education leads at 98.2% domain coverage; townships trail at 20.2%
Proxy services deliver +22.7pp DMARC uplift — proxied domains reach 75.7% vs 53.0% non-proxied

Entity Coverage by Type 69,892 entities

Type	Total	Has Domain	Coverage

SPF vs DMARC by Entity Type

The gap between SPF and DMARC adoption reveals where organizations have basic records but haven't implemented policy enforcement.

Email Provider Landscape

Provider	Domains	Share

Proxy Effect on Security

Metric	Proxied	Non-Proxied	Uplift

Domains using email security proxies (Barracuda, Proofpoint, Mimecast, etc.) show significantly higher authentication rates, likely because proxy vendors enforce or auto-configure DNS records during onboarding.

How does your organization score?

Enter your domain at MonitorWorkspace to get a free personalized email security scorecard — benchmarked against your peers.

Get Your Free Scorecard Back to Research Hub K-12 One-Pager → Public Sector One-Pager → Texas DIR Briefing →