In his article “DNSSEC: Trust along the chain,” lead analyst at the Technical Center of Internet (TCI), Alexander Venedyukhin, discusses the specific features, working principles and also the advantages of DNSSEC, a technology designed to secure name and address data regardless of the domain name system’s low-level properties and network transport.
The DNSSEC technology’s main distinguishing characteristic is that it operates at a level other than the Domain Name System (DNS). It obviates the necessity to obtain authorized and authenticated address data within a zone via DNS alone, with the authentication of these data carried out outside of the domain system.
Up until now, DNSSEC support has not been as widespread as it should be. This is an upshot of the situation where introducing DNSSEC requires the upgrading of both the authoritative name servers themselves and the control tools, while those who are prepared to carry out the upgrade are few.
For more details, read the article.