Duo Security & Yubico partner to protect Facebook employees

Protecting your organization does not need to be complicated, frustrating or costly. The simple addition of strong authentication paired with seamless identity access management can significantly reduce security risks across an entire organization by making it simple to deploy and easy for employees to use. A recent collaboration between Yubico and Duo Security show us how.

The focus on a strong, simple authentication experience is something Duo Security and Yubico have offered together since 2013, when a security need from Facebook sparked the partnership. Facebook needed to provide secure, simple, and seamless authentication to all their employees. They also needed support for frequent logins and quick deployment to 30,000+ employees with minimal overhead and support costs. After careful consideration, the company looked to the advanced authentication solutions provided by both Duo Security and Yubico. Together, our joint solution addressed Facebook’s authentication priorities—placing equal emphasis on usability and security.

“Organizations are looking for flexible options that can meet the needs of a diverse and mobile workforce, and more often than not, they are looking to several solutions to do so,” said Jerrod Chong, VP of Product at Yubico. “That is why Yubico’s integration with Duo Security is one that we, and our customers, value. Together, through the use of the YubiKey and cloud-based authentication on the backend, we’re able to provide a seamless, flexible, and highly-secure authentication experience.”

Both Yubico and Duo Security support the FIDO Universal 2nd Factor (U2F), a two-factor authentication (2FA) security protocol developed by Yubico and Google that effectively defends against phishing and man-in-the middle (MitM) attacks. In June 2017, the National Institute of Standards and Technology (NIST) recognized FIDO U2F at the highest Authenticator Assurance Level (AAL3) in their NIST Special Publication 800-63 Revision3.

“At Duo, we place a heavy focus on end user experience. From frictionless user experiences to quick and seamless deployments, we aim to make authentication with Duo Security exceptionally easy,” said Ash Devata, VP of Product at Duo Security. “At the same time, we take security seriously and constantly improve authentication effectiveness. This is exactly why we added support for the YubiKey and FIDO U2F. As a globally recognized leading authentication standard, U2F is something we absolutely want our customers having access to.”

Duo Security Logo
Ecosystem Showcase: Duo Security

In addition to FIDO U2F, the YubiKey and Duo Security support other authentication protocols including Yubico OTP (one time password), PIV (smart card), OpenPGP, and more. This functionality is loved by joint customers for the flexibility to choose 2FA methods that fit the needs of a diverse user base. The YubiKey provides an easy-to-use and secure way to protect applications that support FIDO U2F standards, as well as additional applications such as VPNs, SSH, RDP, and more, using the same physical form factor.

Learn more about utilizing the YubiKey and FIDO U2F with Duo Security, instructions are provided during the initial Duo self-enrollment process. If you are already enrolled in Duo Security using a different device for two factor authentication, such as your mobile phone, you can add a YubiKey (security token) as an additional authentication device from the device management portal.

New to Duo Security? Learn more about their 2FA and trusted access options for the enterprise. You can get a free trial.

Don’t have a YubiKey? Learn more about securing digital identities, computers, servers, mobile devices, and online services with the YubiKey. Check out the full YubiKey product lineup to find the right key for you.

Talk to our teamTalk to our team

Share this article:


  • Goodbye master passwords: Dashlane and Yubico enhance credential vault encryption and login with YubiKeysAt Authenticate 2025 this week, the world’s leading experts on modern authentication and securing digital identities gathered, to discuss the future of secure authentication and achieving usable security across the account lifecycle. The message was clear: the future of phishing-resistant authentication is using passkeys for encryption, and the gold standard is device-bound passkeys – YubiKeys. […]Read morecredential vault encryptioncredential vault loginDashlanepartnerpasskey encryptionPRF
  • Piloting Europe’s future ID: Passkeys securing digital walletsOver the last several years, passkeys have become ubiquitous. They are available on every mobile platform, in every leading browser, as part of all major enterprise IAM solutions, and in most major cloud services. Until wwWallet came along, the only place where passkeys hadn’t yet made an impact is in the rapidly developing world of […]Read moredigital identity walletspasskeysSIROSwwWallet
  • We’re excited for what’s to come – meet us in-person to find out whyIt’s been a busy year for our team, filled with exciting company and product updates aimed at better serving our customers and helping them achieve cyber resilience as AI-driven phishing threats continue evolving globally. Between industry award recognitions and key new executive leadership hires to lead Yubico to its next stage of growth and a […]Read more
  • FIPS certified vs. FIPS compliant: What’s the real difference?“Is your MFA solution FIPS compliant, or is it certified?”  This is a question we hear a lot, and for good reason. In industries where security and compliance are critical (especially in government contracts), understanding the difference between FIPS certified and FIPS compliant isn’t just semantics – it can mean the difference between meeting requirements […]Read moreFIPSNIST