The invention discloses a credibility verification method based on DNSSEC and DANE protocols. The method includes the steps that first, a key pair is generated for each object to be verified, a public key is submitted to an authoritative server, a private key is stored on a set encryption card and cannot be copied; second, a sub-domain name is allocated to the object to be verified in the DNS domain by the authoritative server, a DANE resource record for storing the public key of the object to be verified is added for the objected to be verified, and signature is performed through the public key; third, the identification of the object to be verified is acquired by a user through a credibility verification client and converted into a domain name, and then a query request is initiated to the DNS domain of the authoritative server; fourth, the corresponding DANE resource record is returned through the authoritative server; fifth, the user acquires the identification of the object to be verified and sends the identification of the object to be verified to the encryption card so that the identification of the object to be verified can be encrypted; sixth, the ciphertext is decrypted by the credibility verification client through the public key in the returned resource record, and then the object to be verified is verified. Through the credibility verification method based on the DNSSEC and DANE protocols, the anti-fake capacity is greatly improved.