Authentication Module Development Guidelines
YubiKey Authentication Modules are developed to add YubiKey two-factor authentication to server-side applications.
The growing popularity and adoption of YubiKey has resulted in a number of e-services, partner enterprise solutions and open source projects offering server-side YubiKey modules for two-factor authentication.
However, Yubico and its customers have noticed a large variance in the deployment, management, authentication and recovery capabilities offered by these modules. So based on customer feedback we propose designers to follow a set of general guidelines for their module design that will help to assure a good user experience.
The design guide document (link below) provides general guidelines for adding YubiKey authentication to your product in a way that will make it work smoothly for the majority of use cases we have been exposed to. It covers the capabilities we recommend to be supported and the considerations to be made when designing and developing a comprehensive and configurable YubiKey authentication module for server-side applications.
The document also have recommendations for how the module should be implemented, administered and maintained. The document does not cover any specific platform or programming language details.
Module Development and Design Guidelines
