The US government has pushed back the date of DNSSEC implementation at the root zone by two weeks. The announcement, made at ICANN's “Root DNSSEC” web site, was vague about the reasons, saying only that it was “for further analysis” and to “finalize testing.” In a more important move, which may or may not be related, ICANN said that:
“the U.S. Commerce Department will issue a public notice announcing the publication of the joint ICANN-VeriSign testing and evaluation report as well as the intent to proceed with the final stage of DNSSEC deployment. As part of this notice the DoC will include a public review and comment period prior to taking any action.”
The existing plans for signing the root and deploying DNSSEC at the root zone were imposed on ICANN and its community by the U.S. government as a product of closed negotiations between the Commerce Department, VeriSign and ICANN.
The political and governance implications of DNSSEC implementation are still hotly debated. The comments IGP filed in November 2008 are still relevant in this regard. Some (mostly people in the U.S. military and government) feel that it will increase the security of a critical infrastructure, while many outside the U.S., especially governments, fear that the US Government is pushing it because it solidifies its control of the Internet's critical naming infrastructure (the Domain Name System). A public comment period may give some outlet to these concerns.