NEO Supports U2F +OTP; Same Key at Same Time

November 19, 2014 2 minute read

Today, we whizz past another milestone. NEO keys built on our 3.3 firmware will support both U2F and OTP running on the same key at the same time. In fact, the configuration will support those two along with CCID.

We heard loud and clear during our launch of U2F support in October that a multi-function key that included the FIDO Alliance U2F protocol was on the must-have list for many Yubico customers.

We could not solve this immediately even though our multi-function capability was already resident on the NEO (as many of you theorized), but the FIDO client (browser side) needed the necessary plumbing in order to complete the experience.

With yesterday’s release of Version 39 of Google’s Chrome browser all the pieces are now in place.

If you have a NEO or NEO-n key (3.3 firmware) use the newly released NEO Manager for your platform (Windows, Mac, Linux) to configure the key.

What are the benefits of this multi-function key? Many people say they are using Gmail (U2F) and LastPass (OTP) or WordPress (OTP) to bolster security across their applications using just one YubiKey. You can also use the OpenPGP capabilities (CCID mode) in conjunction with U2F and OTP without needing to reconfigure the device for different protocols. And there are other combinations you can hear about from your peers on our Twitter feed @Yubico.

This is just one milestone we have been working on. There are others out there and they are just as interesting. Stay tuned. And enjoy the security.

Here are some relevant links to help get you started:

Share this article:

Recommended content


5 Simple Ways to Get Started with Your YubiKey

What are your go-to apps? There are several applications and services that many of us use weekly, and in most cases, daily — Gmail, Facebook, Dropbox, a password manager — and the good news is that all of these support the YubiKey for strong authentication. And now, there is one more to add to the ...


YubiKey NEO OpenPGP Security Bug

Yubico recently learned of a security issue with the OpenPGP Card applet project that is used in the YubiKey NEO. If you are not using OpenPGP, or have the OpenPGP applet version 1.0.10 or later, this vulnerability does not apply to you. The OpenPGP Card applet defect was inherited from the open-source software project “javacardopenpgp.” The ...


Does Key Size Really Matter in Cryptography?

One of the most interesting and useful aspects of the YubiKey NEO and NEO-n is that they can act as a smart card and come pre-loaded with a bunch of interesting applications, such as an implementation of OpenPGP Card. Many end-users like this functionality, but some question the key lengths. It’s an expected cryptographic question ...


Google Unveils FIDO U2F Security Key Support

Google today announced on its security blog an extra layer of security for Google Accounts based on the emerging strong authentication standard; Universal 2nd Factor or U2F. This is a good day for the Internet. As a driving contributor to FIDO U2F specifications, Yubico celebrates this big day by releasing a new blue campaign version ...