How does Yubico’s implementation of U2F claim to be able to support any number of services with unique key pairs when we have limited storage? And do this in a way that is secure and respects your privacy? First off, a refresher on how this is described in the U2F specification: “U2F tokens might not […]
Read moreIf you are not a dictator, you probably love the Internet. During the Arab Spring protests, social media played an important role in helping people to connect and organize protests against non-democratic governments. Inevitably, this created a backlash against such sites, intimidating them to provide information about individuals. In a discussion with a security engineer at […]
Read moreGoogle today announced on its security blog an extra layer of security for Google Accounts based on the emerging strong authentication standard; Universal 2nd Factor or U2F. This is a good day for the Internet. As a driving contributor to FIDO U2F specifications, Yubico celebrates this big day by releasing a new blue campaign version […]
Read moreI’ve been in this business for a long time and watched a lot of promise collapse and a fair number of snake oil salesmen flourish. Strong authentication is one of those technology conundrums that always seems to be partially solved. The drawbacks of traditional one-time passcodes are well understood and we’ve always truly known their […]
Read moreWe are growing! The authentication market is locking into its stride, and there has never been another period when computer experts and novices have spent so much time, effort and debate on what has mostly been the silent corner of the Internet – security. To keep up, Yubico has added horsepower by hiring new people […]
Read moreWhen security consultant Ian Qvist talks about YubiKeys, he does so with a knowing grin and the knowledge he’s tightening security without adding complexity. Qvist works with customers such as government agencies and Danish banks whose IT teams are looking for answers to specialized security needs. “We use YubiKeys in a lot of places,” says Qvist, […]
Read moreYubico has heard this question a lot over the past days since the iPhone 6 was released with NFC support. The answer would be “now” if Apple had an open ecosystem, but that likely won’t be the case for another 12-16 months. But put a pushpin on your roadmap, the YubiKey NEO will be a multi-factor authentication […]
Read moreIn the next three weeks, Salesforce will add a second major piece within the past year to its identity and access management capabilities. At its annual Dreamforce conference, Salesforce will unveil the Winter 15 edition, including a new feature called Login Flows that allows Salesforce admins to customize the login experience for their users. On […]
Read moreThis week ushered in my start with Yubico and I couldn’t be happier to be a part of what is going on here. The challenge in any new job is that while your colleagues are at a full-on run, you’re still learning how to walk. But after five days, I do know I better catch […]
Read moreUpdated Oct. 22, 2014 to include information on Security Key We have received a few questions with regards to “BadUSB” concept and the YubiKey, presented at BlackHat 2014. This was picked up by wired.com, where the problem domain is somewhat expanded into a claim that the “Security of USB Is Fundamentally Broken”. Although there are a few […]
Read more