• YubiKey NEO Updates UPDATE: YubiKeys with serial numbers 2624253 to 2624449 and 2624801 to 2625499 are also not configured with fixed card manager keys. Our YubiKey NEO, is a JavaCard-based product. The NEO has a set of card manager keys that allows you to delete/add/update the software “applets” running on the NEO, through the Global Platform interface. We […] Read more
• Lost YubiKey Best Practices We hope that you will not lose your YubiKey, but for larger deployments and serious use, establishing processes around lost YubiKeys is an important and challenging aspect. Yubico has offered the YubiRevoke service to help with this aspect, which is a centralized way to disable YubiKeys validated through the YubiCloud. Initially we thought this was […] Read more
• Improving YubiKey Physical Security Yubico has been working with world-renowed cryptographers at the Ruhr-Universität Bochum to improve resistance against physical attacks directed at the YubiKey. This has been ongoing process over the last year. The results were made public at the RAID2013 conference, and have also been presented at 30C3. To follow our principles of openness and transparency, we will […] Read more
• YubiX: Reference Auth Software Yubico is happy to introduce a project that combines several of our server-side software packages: YubiX. YubiX is intended as a reference architecture software stack to demonstrate how to build robust and secure authentication systems that utilizes the YubiKey and YubiHSM hardware. While YubiX may be run directly as-is, it is not intended as a […] Read more
• BrowserID and YubiKey To to learn how you use the YubiKey with BrowserID, a new open identity initiative, please check out this video from a BrowserID developer: https://vimeo.com/64514090 BrowserID was introduced in mid 2011 by the Mozilla Project. It addresses the same problem as OpenID and SAML, as well as the common OAuth or OpenID-based login-with-an external-account (such […] Read more
• Enabling YubiKey NEO’s OpenPGP Applet: Step-by-Step Guide In this post, we will take you through the steps to enable the YubiKey NEO’s OpenPGP applet on a production YubiKey NEO. YubiKey NEOs are currently shipped with an OpenPGP applet already installed but disabled. You will need to enable the Applet functionality of the YubiKey NEO before you can use the OpenPGP applet. To […] Read more
• Enhancements to YubiKey VIP: Flexible Configurations for Enhanced Security We’ve made some changes to the YubiKey VIP! Previously, the YubiKey VIP came with a Symantec VIP credential used with services that support the Symantec VIP second factor authentication. If you wanted to use the YubiKey with a YubiCloud service (such as LastPass) you would need to add a YubiCloud credential to the YubiKey VIP. […] Read more
• RFiD and the YubiKey NEO When Yubico first introduced the YubiKey RFiD in 2009, it provided users with an unmatched integration of physical and network security. Many facilities with existing RFiD based security systems have integrated the RFiD YubiKey into their systems, allowing users to use one device to access their office space as well as network account. The RFiD […] Read more