The YubiKey can be programmed to generate a long static password, when configured with the Personalization Tool.
Core Static Password features
- Can include any combination of 16 to 64 characters and/or numbers
- Changing the static key to randomly generate a new code can be achieved by a 10-second press of button, followed by 1 more press
- Requires no back-end server integration, works with most legacy username/password solutions.
- Do not provide the same high level of security as one time passwords
Please note: Yubico recommends users to use the YubiKey in static password mode for only part of their password. Users are recommended to manually enter a simple and easy-to-remember first part of their password, then use the YubiKey to enter a strong second part to their password. For example: Users can set their password to Sunny33rcltrcihbkkiulnveuenervidliliifv, where “Sunny33” is manually entered by the users and “rcltrcihbkkiulnveuenervidliliifv” is stored in and entered by the YubiKey.
How it works
The YubiKey can be programmed to emit a string of up to 64 characters. A strong key is often considered one which has 128 bits of length (or more) and with high entropy – or randomness.
To get 128 bits key length, we recommend a static key of 32 characters. An example could be: rcltrcihbkkiulnveuenervidliliifv
Where it can be used
Static Password works with most legacy username/password solutions that does not have support for YubiKey one-time password technology