Amazon Web Services announces support for FIDO2 security keys

Will Smart

Will Smart

2 minute read

Amazon recently announced improved support for using FIDO2 security keys as an MFA device to log on to the Amazon Web Services (AWS) console. As a result, FIDO2 security keys like the YubiKey are now supported on AWS GovCloud (US region) – providing phishing-resistant MFA for all users. 

Additionally, AWS has improved their support for device attestation in all regions – including supporting IAM policies that can be used to enforce enrollment with FIPS-certified or FIDO Alliance-certified devices. The YubiKey 5 FIPS series, which are both FIPS 140-2 validated and FIDO Level 2 certified, provide the highest level of security and compliance needs.

This news means that however you access the AWS console – either via a root account, an IAM user, commercial or government cloud, a desktop or a supported mobile platform – you can secure your access with an easy-to-use, phishing-resistant FIDO2 security key. AWS even supports enrolling a FIDO2 credential on behalf of another user for organizations that need extra control over their AWS console credentials.

If you have a YubiKey and an AWS account in a standard AWS region, we recommend registering an additional YubiKey today (accounts in standard regions support up to 8 MFA devices per user). AWS GovCloud currently only supports a single MFA device per user, but we anticipate support for multiple security keys in the future as this is provided in standard AWS regions today.

——

To order a YubiKey today, visit Yubico’s store or purchase from Amazon.com and protect your AWS access with phishing-resistant MFA. Find out which YubiKeys are right for you and your business, check out our quiz here

, , , , ,
Talk to our teamTalk to our team

Share this article:
  • Yubico LogoYubico liefert PIN-Verbesserungen mit dem neuen YubiKey 5 – Verbesserte PIN-SchlüsselUm sich auf die sich ständig weiterentwickelnden Cyber-Bedrohungen vorzubereiten, passen Regierungen weltweit die Authentifizierungsanforderungen für Online-Dienste an und aktualisieren sie, was direkte Auswirkungen auf viele Unternehmen und deren Mitarbeiter hat. Zwar gibt es derzeit keine universelle Regelung für eine robustere Multi-Faktor-Authentifizierung (MFA), doch wird deren Notwendigkeit in einer Reihe von Anforderungen hervorgehoben, darunter PSD2, DSGVO […]Read moreYubiKey
  • Yubico delivers PIN advancements with new YubiKey 5 – Enhanced PIN keysTo prepare for continuously evolving cyber threats, governments around the world are adapting and updating authentication requirements for online services which directly impact thousands of organizations and their employees. While there’s currently no universal regulation for more robust multi-factor authentication (MFA), the need is highlighted across a range of requirements including PSD2, GDPR, and the […]Read moreCompany NewsProduct NewsYubiKeyYubiKey 5 – Enhanced PINYubiKey 5 SeriesYubiKey as a Service
  • An inside look at Yubico’s transition to passwordlessBefore “passkey” became a familiar term in our industry, Yubico had long delivered hardware-backed and phishing-resistant FIDO2 based authentication. Today, the adoption of passkey usage is accelerating. However, it’s taken quite a bit longer to integrate passwordless authentication into the everyday, enterprise-grade authentication flows that are required for today’s businesses.  As long as it’s been […]Read moreOktapasswordless
  • Mission matters – my reflections on winning the EY World Entrepreneur of the Year “This is the biggest mission any of the entrepreneurs have presented in this competition.”  I heard these words a few weeks ago from one of the judges for the EY World Entrepreneur of the Year award program – whom I had the honor to meet during the final step of the world’s largest entrepreneur competition.  […]Read moreawardsFounderStina Ehrensvard