Manufacturer Yubico

The YubiKey from Yubico not only enables powerful two-factor authentication for your applications, but is also simple and straightforward for the user: one-touch authentication instead of the hassle of typing in codes. The YubiKeys can be used to secure many different accounts - including remote access and VPN, password managers, computer login, Gmail login, content management systems, popular online services and much more.

The YubiKey combines high security and user-friendliness with an unbeatable price-performance ratio. Compared to smart cards, other security tokens, cell phones and TPMs (Trusted Platform Modules), the YubiKey offers a number of advantages.

A new password for every login, much stronger than static passwords
6 - 32 digit one-time passwords
Public key encryption method
Presence of the user required (verification that it is not malware)
Hardware is protected by Secure Elements

Fast authentication process with a click
No card reader required
No drivers and client software required
One device for any number of different services
No complications with time synchronization
Can be used via NFC with other NFC-enabled devices (apart from iOS devices)
Requires no batteries
Waterproof and unbreakable
Lighter than a credit card
Can be conveniently used on all computers and removed from the USB port at any time
Can be used by users with limited vision

High level of user acceptance
Low total cost of ownership (low-cost hardware, high-speed configuration, free open-source components, minimal shipping costs, no card reader, no client software, no battery, support in case of failure and no synchronization issues)
The unique one-touch authentication process saves thousands of hours over the years for large enterprise applications.

Welcher YubiKey ist der Richtige für mich?

Is offered including open source servers and applications for configuration
Multiple authentication and encryption protocols on one device
Multiple economical backups can be purchased
Simple programming of your own secrets at no or low cost

Products from Yubico

Applications

The YubiKey works with numerous applications out-of-the-box and without client software.

Features

The YubiKey offers numerous functions for securing your logins.

Each YubiKey (except the blue security key) has 2 slots that you can configure independently of each other using the Yubico personalization tool. This means that the key practically functions as two separate keys. (Slot 1 is configured with the Yubico OTP on delivery).

The following functions are available (depending on the YubiKey):

OTP (One Time Password)

The YubiKey generates an encrypted password that can only be used once. A hacker would therefore need your YubiKey to generate the corresponding one-time password. Yubico-OTP can be used with all YubiKeys, with the exception of the U2F Security Key.

FIDO U2F

U2F is an open 2-factor authentication standard that enables secure access to any number of web-based services (such as Gmail or Dropbox) - instantly and without drivers or client software. The U2F specifications were originally developed by Google, with the involvement of Yubico and NXP. Today, everything is under the umbrella of the FIDO Alliance (Fast IDentity Online).

FIDO2

FIDO2 is a standard of the FIDO Alliance that enables strong authentication on the web.

OATH - HOTP (event-based one-time password)

The YubiKey generates a six- or eight-digit one-time password for any service that supports OATH-HOTP. This action is event-based, so a new password is generated for each event. The OATH-HOTP feature is available for every YubiKey except the blue U2F-Security Key.

OATH TOTP (time-based one-time password)

The YubiKey generates a six- or eight-digit time-based one-time password for logging into all services that support OATH-TOTP. These include Microsoft Cloud Accounts, Google Apps, Dropbox and EverNote. A new one-time password is generated for each time interval, usually every 30 seconds. With the exception of the U2F security key, OATH-TOTP can be configured on all YubiKeys.

Static Passwort

Static Password is an essential YubiKey feature that generates a 38-character static password for logging into any application. This feature is most commonly used for legacy systems that cannot be upgraded for other two-factor options. Static Password can be configured for all YubiKeys except the U2F Security Key.

Challenge-Response (HMAC-SHA1, Yubico OTP)

Challenge-Response is best suited for offline authentication and can be used for Windows, Mac and Linux. All YubiKeys, except the blue U2F Security Key, support Challenge-Response.

PIV Compliant Smartcard

Smartcards contain a computer chip for data exchange. The YubiKey Neo also has this feature, based on the industry standard PIV (Personal Identity and Verification Card).

OPENPGP

In the real world, documents and data are often validated by a signature. OpenPGP, a standards-based public key cryptography, signs, encrypts and decrypts text messages, emails and files in the virtual world.

YubiKeys for companies
YubiKeys for private users

What can the YubiKey do for your company?

Systems

To secure servers, workstations and remote access in your organization, use the YubiKeys for:

CCID/PIV
OTP
Challenge-Response
Static Password

Cloud

To secure cloud applications, use the YubiKeys for:

U2F – Gmail, Google Apps for Work, Google Drive for Work
U2F – Dropbox, Dropbox for Business
OTP – Salesforce.com
OTP – WordPress, Drupal, Joomla

Identity und Access Management

For Identity and Access Management in your organization, use the YubiKeys for:

Mobil

To secure mobile applications, use YubiKeys for:

What can I use the YubiKey for?

Here's a list of some of the services you can use the YubiKey with to get you started - and the list gets longer and longer.

Passwort Manager

With a password manager, you can easily manage different, longer and more secure passwords for each individual website or service. In addition, the user does not have to enter all login details every time they log in. That's why password managers should have an extra layer of security for logins to ensure that no one else can access your list of passwords. With a YubiKey, you can easily and securely add a second factor to your login with username and password.

Internet Services

The increasing number of password thefts has illustrated the catastrophic consequences and shown how quickly online identity theft can happen. Two-factor authentication with the YubiKey is possible with many other Internet services. This is done using the YubiTOTP, a time-based one-time password (generated on your desktop or with your Android phone). Experienced users can also use the YubiTOTP app.

Computer Login

Secure your accounts with the YubiKey - regardless of which operating system is installed:

Windows
Mac OS X
Linux

Hard disk encryption

Do you want to encrypt the data on your hard disk? Are you already using hard disk encryption software, but want to secure your data even further? You can easily and securely back up your data using YubiKey two-factor authentication.

Start with the customer – find out what they want and give it to them.

About Yubico

As the inventor and manufacturer of the YubiKey, Yubico has created new standards for secure login on the Internet. The unique USB and NFC keys enable secure and easy one-touch authentication via various authentication protocols - without the need for drivers or client software. In 156 countries, the YubiKey has been successfully introduced in numerous companies, including 8 of the top 10 Internet companies. More and more users in the consumer market are also relying on user-friendly two-factor authentication with the YubiKey. Yubico was founded in 2007 and has offices in Palo Alto, CA, Seattle, WA, Stockholm and London.