Home

YubiKey

YubiKey is a hardware authentication device produced by Yubico that provides strong, phishing-resistant access to online services, applications, and devices. By storing cryptographic keys on a physical key, it enables users to prove possession of the key in combination with a service or device, often replacing or supplementing passwords.

YubiKey supports multiple authentication methods, including FIDO2/WebAuthn and FIDO U2F for web sign-in, as well as

Typical YubiKey form factors include compact USB sticks and contactless/NFC keys. In the YubiKey 5 Series and

Security benefits stem from keeping credentials on the device and performing cryptographic operations locally. Because authentication

Enterprise and IT environments can manage YubiKeys through centralized administration, policy settings, and key management tools

one-time
passwords
(OTP)
based
on
HOTP,
smart
card
functionality
via
PIV,
and
OpenPGP
for
email
encryption.
Many
models
offer
USB-A,
USB-C,
and
NFC
interfaces,
with
some
variants
providing
Lightning
connectors
for
iOS
devices.
This
multi-protocol
approach
allows
use
across
browsers
and
platforms,
and
can
enable
passwordless
login
on
supported
services.
newer,
options
include
USB-A,
USB-C,
dual
connector
variants,
and
the
YubiKey
Bio
family
adds
biometric
fingerprint
verification.
The
devices
are
designed
to
be
rugged
and
portable,
with
no
battery
required.
relies
on
a
private
key
that
never
leaves
the
device,
phishing
sites
that
copy
passwords
cannot
harvest
valid
credentials.
Users
should
maintain
backups
or
multiple
keys
and
configure
recovery
options
for
services
that
support
it.
provided
by
Yubico,
enabling
deployment,
provisioning,
and
auditing.
While
highly
versatile,
YubiKeys
require
compatible
services
and
devices,
and
loss
of
a
key
necessitates
backup
authentication
methods
or
additional
keys.