Hello, DigitalOcean support team,

I am writing to formally request the implementation of DNSSEC (Domain Name System Security Extensions) support in the DigitalOcean managed DNS service.

Context and use case:

I operate a multi-tenant SaaS platform hosted on DigitalOcean Droplets, serving Brazilian City Councils. In Brazil, the official government domains under the domain. leg.br (managed by the Federal Senate Interlegis Program) require that DNSSEC be enabled on any external DNS provider before DNS authority is delegated to that provider.

DigitalOcean DNS currently does not support DNSSEC or the creation of DS (Delegation Signer) records. This is a documented limitation. As a direct consequence, I am unable to use DigitalOcean's name servers as the DNS authority for my clients' official government domains, and I'm required to route the DNS through a third-party provider (Cloudflare) just to meet this requirement — adding unnecessary complexity to an infrastructure that would otherwise be native to DigitalOcean.

Specific features requested:

• Creation of DS records in zones managed by DigitalOcean

• DNSSEC signature support on DigitalOcean name servers (ns1/ns2/ ns3.digitalocean.com)

• DNSSEC key management through the DigitalOcean Control Panel and API.

This feature would be particularly impactful for customers operating in regulated environments — government, healthcare, finance — where DNSSEC is a mandatory requirement, not an optional enhancement.

I'm available to provide additional technical details or participate in any beta program if this feature is under development.

I appreciate your attention.

Regards,

Digital Camera (digital camera)