DNSSEC deployment across the ccTLDs

Anurag Bhatia
While I am spending time on APNIC’s security workshop here at APNIC 46, I got curious about DNSSEC deployment across ccTLDs. For those who may be unaware, DNSSEC adds signature the DNS responses making it possible to cryptographically verify a DNS query response. Out of 254 ccTLDs, 125 support DNSSEC with a published DS record (at least that is what I get when I check their zone) and 129 do not support it as yet.