DNSSEC (Domain Name System Security Extensions) protects consumers by allowing registrars to digitally sign records served from the Domain Name System (DNS). The digital signature prevents unauthorized (modified or corrupted) records from reaching the end user, thus protecting them when network operators use DNSSEC validation on their resolvers that handle DNS lookups. In this way, end user vulnerability to certain types of cyber-attacks is decreased, helping to protect Internet users. DNSSEC is a mature technology that’s widely supported in DNS software, and enabled by default on modern resolvers. The more the extensions are used and rolled out, the more additional value and security they provide.

See https://ispa.org.za/dnssec/secure-domain-providers/ for a list of ISPA members that have indicated their support of, and DNSSEC services which they provide.