mrsbrisby writes "The DNSCurve project uses high-speed high-security elliptic-curve cryptography to drastically improve every dimension of DNS security. Unlike DNSSEC, it was designed to actually be deployed on top of the existing mess that the Bind company created, in addition to actually supporting confidentiality and reducing denial-of-service potentials instead of decreasing confidentiality and slowing down your servers and clients.
Additionally, the PDF slides describe an implementation that is easy to deploy and administer.
The announcement on the DJBDNS mailing list doesn't make it clear if it was designed in response to the recent exploits affecting other nameservers."
Link to Original Source