A system for concurrently publishing a current version of a plurality of Domain Name System (DNS) records for a zone of domain name and for storing a next version of the plurality of DNS records for the zone, the system comprising: a record selection module for obtaining registry data associated with the domain name stored in a registry database; a DNS Security (DNSSEC) signing system having a first High Security Module (HSM) of a first vendor for facilitating digital signing of the registry data to generate a first signed DNS record using a first signing key (SK1) and a second HSM of a second vendor for facilitating digital signing of the registry data to generate a second signed DNS record using a second signing key SK2, the SK1 different from the SK2; and a distribution system for coordinating concurrent generation and transmission of the current version and the next version; the distribution system and signing system cooperating to: generate the concurrent version using SK1 to include the first signed DNS record according to a first set of generation instructions and transmit in a first transmission path that bypasses storing of the current version in the registry database; and while the current version is operational in the DNS, generate the next version using SK2 to include the second signed DNS record according to a second set of generation instructions and transmit to a publication storage for at least one of testing or validation by a processing facility in a second transmission path that bypasses storing of the next version in the registry database.