Looks like Comodo ISE has nothing to do with DNS. CISE blocks man-in-the-middle attacks attempts by verifying certificates against Comodo's trusted root certificate list.