Even so, DNS resolution is just one aspect of securely communicating on the net. DNSSEC won't entirely secure a site: SSL/TLS is especially suited to HTTP, as it can provide some security although only one aspect from the interaction is authenticated. This is actually the circumstance with HTTP transactions on http://XXX