When do we get a DNSSEC signed root zone?
An article in Wired today interview a number of people about DNSSEC. The conclusion of the article is that they all think the root zone should be signed, and that one of the major obstacles today is the part of the US Government that overlook changes to the root zone. The one that have the contract with ICANN.
Many of my domains are in the .SE TLD, that is signed with DNSSEC. The problem is of course that not many resolvers do verify DNSSEC signed responses. Not before the root is signed. I personally definitely think it is time to sign the root zone.