On the performance and analysis of DNS security extensions