A new report published State of DNSSEC Deployment 2016 there has been steady and strong growth in both the statistics around DNSSEC signing and validation — and also in the number of tools and libraries available to support DNSSEC. That growth, however, is not evenly distributed.
While many separate sites provide DNSSEC statistics, this report that includes growth of DANE usage (DNS-based Authentication of Named Entities) collects the information into a series of tables and charts that paint an overall picture of the state of DNSSEC deployment as of December 2016.
In some parts of the world, particularly in Europe, there is solid growth in both DNSSEC signing and validation. In other parts of the world, the numbers are significantly lower.
Similarly, while some country-code top-level-domains (ccTLDs) such as .CZ, .SE, .NL and .BR are seeing high levels of DNSSEC signing of second-level domains, other ccTLDs are just beginning to see DNSSEC-signed domains. And among the other TLDs, some such as .GOV have almost 90% of their second-level domains signed, while .COM has under 1% signed.
Read the Summary by Dan York