Seems really old news since captcha has been around in firmware for almost a year now.
I guess the DNSSEC could point towards the (again) already present Advanced DNS feature.
I have not seen any private router based application of DNSSEC, which has been designed specifically to protect DNS rootservers.