Domain Name System Security Extensions (DNSSEC) is a specification for securing the traditional DNS and is a set of extensions to DNS, which provide data integrity and origin authentication of DNS data. Since DNS inherently lacks security, the design of DNSSEC was to protect networks from attacks, such as DNS cache poisoning. Even though our Dell TCPWave appliance leverages source port randomization, and query scrubbers, to fend off a Kaminsky attack, we still offer our customers the choice to deploy DNSSEC if it adds additional security in some circumstances. When the DNS was conceived, the internet was minimal that it could not foresee the future cyber-attacks that could exploit its security shortcomings. Over the past few decades, DNS, despite its vulnerabilities, has remained unchanged in its implementation while spreading worldwide. It meant that it posed a severe threat to any organization's network which relies primarily on DNS. Domain Name System Security Extensions (DNSSEC) was designed as an improvement over DNS to protect networks from pervasive threats, such as DNS cache poisoning, DNS redirection, malware, and man-in-the-middle attacks. DNSSEC is a specification that provides data integrity and origin authentication of DNS data through public-key encryption and validation of data using a digital signature.