CAA Resource record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain. CAA Resource Records, the new requirement in SSL validation process, allow a Certification Authority to implement additional controls to reduc e the risk of unintended certificate mis-issue.
The DNS CAA Resource Record look like this:
rvglobalsoft.com. CAA 0 issue "symantec.com"