DNSSEC

DNSSEC evidence shows whether public DNSSEC-related signals are visible for a domain or its delegation chain.

DNSSEC posturePublic evidenceObserved over time

Observed evidence

Observed by .auDO

These fields describe the public evidence .auDO records for this signal where available.

dnssec_enableddnssec_enabled_rdapdnskey_presentdns_raw.dnssec_enabled_rdapdns_raw.dnskey_presentdnssec_mismatch

Interpretation

How to read this signal

This signal is useful as public evidence of visible posture or change, not as a conclusion on its own.

Why it matters

DNSSEC can provide cryptographic assurance for DNS responses when correctly configured. .auDO observes public DNSSEC evidence so changes in visible posture can be compared over time.

What change may indicate

DNSSEC changes may reflect delegation updates, key publication changes, registrar or registry updates, provider migration, staged rollout, collection fallback or operational maintenance.

Limits

What it cannot tell us

.auDO observes public DNSSEC evidence, not the full operational quality of the domain. DNSSEC presence alone does not prove correct or complete deployment, and absence alone does not prove negligence, compromise, risk or intent.

Observations are descriptive records, not risk scores, allegations or evidence of compromise.

Observed patterns

Common observations

DNSSEC visibility changeDNSSEC assertion gap change

Report surface

Where it appears

This signal can appear in daily reports, the observation panel, methodology notes, derived report artefacts and preserved raw snapshot evidence when the relevant fields are present.

Nearby signals

DNSKEY presence DNSSEC via RDAP Name servers Raw evidence

Use alongside

Explore this signal in context

DNSSEC signals are most useful when read alongside DNSSEC State views, DNSKEY evidence, RDAP context and methodology notes.

What is DNSSEC?DNSSEC state DNS provider state Reports Methodology Observed cohorts