Protecting your organization does not need to be complicated, frustrating or costly. The simple addition of strong authentication paired with seamless identity access management can significantly reduce security risks across an entire organization by making it simple to deploy and easy for employees to use. A recent collaboration between Yubico and Duo Security show us how.
The focus on a strong, simple authentication experience is something Duo Security and Yubico have offered together since 2013, when a security need from Facebook sparked the partnership. Facebook needed to provide secure, simple, and seamless authentication to all their employees. They also needed support for frequent logins and quick deployment to 30,000+ employees with minimal overhead and support costs. After careful consideration, the company looked to the advanced authentication solutions provided by both Duo Security and Yubico. Together, our joint solution addressed Facebook’s authentication priorities—placing equal emphasis on usability and security.
“Organizations are looking for flexible options that can meet the needs of a diverse and mobile workforce, and more often than not, they are looking to several solutions to do so,” said Jerrod Chong, VP of Product at Yubico. “That is why Yubico’s integration with Duo Security is one that we, and our customers, value. Together, through the use of the YubiKey and cloud-based authentication on the backend, we’re able to provide a seamless, flexible, and highly-secure authentication experience.”
Both Yubico and Duo Security support the FIDO Universal 2nd Factor (U2F), a two-factor authentication (2FA) security protocol developed by Yubico and Google that effectively defends against phishing and man-in-the middle (MitM) attacks. In June 2017, the National Institute of Standards and Technology (NIST) recognized FIDO U2F at the highest Authenticator Assurance Level (AAL3) in their NIST Special Publication 800-63 Revision3.
“At Duo, we place a heavy focus on end user experience. From frictionless user experiences to quick and seamless deployments, we aim to make authentication with Duo Security exceptionally easy,” said Ash Devata, VP of Product at Duo Security. “At the same time, we take security seriously and constantly improve authentication effectiveness. This is exactly why we added support for the YubiKey and FIDO U2F. As a globally recognized leading authentication standard, U2F is something we absolutely want our customers having access to.”
In addition to FIDO U2F, the YubiKey and Duo Security support other authentication protocols including Yubico OTP (one time password), PIV (smart card), OpenPGP, and more. This functionality is loved by joint customers for the flexibility to choose 2FA methods that fit the needs of a diverse user base. The YubiKey provides an easy-to-use and secure way to protect applications that support FIDO U2F standards, as well as additional applications such as VPNs, SSH, RDP, and more, using the same physical form factor.
Learn more about utilizing the YubiKey and FIDO U2F with Duo Security, instructions are provided during the initial Duo self-enrollment process. If you are already enrolled in Duo Security using a different device for two factor authentication, such as your mobile phone, you can add a YubiKey (security token) as an additional authentication device from the device management portal.
Don’t have a YubiKey? Learn more about securing digital identities, computers, servers, mobile devices, and online services with the YubiKey. Check out the full YubiKey product lineup to find the right key for you.