Internet Corporation for Assigned Names and Numbers (ICANN) delayed the KSK Rollover for next year. ICANN was planning to replace the seven-year-old KSK key with a new version of the DNS protocol. Inattentive ISPs and technical faults have led ICANN to delay the change to the key signing key. The new KSK is part of the DNSSEC protocol, which uses encryption keys to digitally sign data stored in DNS records as a way to prevent DNS spoofing attacks.
Source: https://www.bleepingcomputer.com/news/security/internet-regulator-delays-key-security-feature-update-because-of-lazy-isps/