The rapid advancement of AI is changing the global cybersecurity landscape. As these technologies become more powerful, safeguarding access to them is increasingly critical — particularly for the security researchers and defenders working to identify vulnerabilities, strengthen software and improve cyber resilience. People need advanced account protection that can withstand modern phishing and social engineering attacks, helping ensure state-of-the-art AI capabilities remain in the hands of trusted users.
Today’s announcement from OpenAI sets a new industry standard: starting September 1, all individual members of Trusted Access for Cyber (TAC) must enable Advanced Account Security using a hardware-backed passkey to retain access to frontier cyber models. Additionally, OpenAI is tightening access restrictions for high-risk entities and jurisdictions.
At Yubico, we believe the future of AI security depends heavily on identity and authenticator assurance, not just model safety. When the stakes are this high, organizations can no longer rely on software-based controls or legacy multi-factor authentication (MFA), both of which are easily bypassed or intercepted. True security requires a phishing-resistant, hardware-backed root of trust built on credentials that cannot be copied or synced.
Protecting TAC with hardware-backed passkeys makes accounts significantly more difficult and costly for threat actors to exploit at scale. By dramatically raising the barrier to entry, this approach disrupts the criminal ecosystem that relies on creating, validating, and reselling compromised accounts for downstream abuse.
Securing your ChatGPT account with YubiKeys
Moving to hardware-backed protection is a seamless process for TAC members aligning with the new mandate. Through OpenAI’s Advanced Account Security program, security keys provide a higher-assurance environment by deliberately disabling weaker fallback methods. This partnership allows you to replicate the identical security posture that OpenAI uses internally to safeguard its own infrastructure and employees. To facilitate this transition, a custom 2-pack of YubiKeys is available to existing account holders at preferred pricing.
- YubiKey C NFC – OpenAI: Perfect for the modern mobile workforce. Authenticate instantly with a simple tap against your phone or tablet.
- YubiKey C Nano – OpenAI: Designed for maximum convenience. Plug it into your laptop’s USB-C port and leave it there for effortless, continuous protection.
Once enrolled, users experience the gold standard of phishing-resistant security through a fast, entirely passwordless experience. To secure your ChatGPT accounts with YubiKeys today, visitchatgpt.com/advanced-account-security or read the full partnership details here.
