Tag: YubiKey


Aug 6, 2014
YubiKey & BadUSB
Updated Oct. 22, 2014 to include information on Security Key We have received a few questions with regards to “BadUSB” concept and the YubiKey, presented at BlackHat 2014. This was picked up by wired.com, where the problem domain is somewhat expanded into a claim that the “Security of USB Is Fundamentally Broken”. Although there are a few …

Jun 10, 2014
Lost YubiKey Best Practices
We hope that you will not lose your YubiKey, but for larger deployments and serious use, establishing processes around lost YubiKeys is an important and challenging aspect. Yubico has offered the YubiRevoke service to help with this aspect, which is a centralized way to disable YubiKeys validated through the YubiCloud. Initially we thought this was …

Apr 30, 2014
Improving YubiKey Physical Security
Yubico has been working with world-renowed cryptographers at the Ruhr-Universität Bochum to improve resistance against physical attacks directed at the YubiKey. This has been ongoing process over the last year. The results were made public at the RAID2013 conference, and have also been presented at 30C3. To follow our principles of openness and transparency, we will …

Feb 14, 2014
CERN Research Secured with YubiKey
Read about how CERN is using YubiKeys in eWeek CERN, the European Organization for Nuclear Research, pioneers of the World Wide Web and one of the world’s leading scientific research centers, uses YubiKeys for securing critical services. “The YubiKey meets all our requirements thanks to its simplicity of use, its open algorithm and the available …

Jan 21, 2014
S. American Bank Deploys YubiKeys
Financial transactions and banking are top targets for online criminals and one simple stolen password can wreak havoc on one’s online identity. Yubico and SwissBytes are proud to announce that Bolivia-based Banco Ganadero has successfully implemented and deployed SwissBytes Virtual Box (SB-VBOX) with integrated YubiKey second-factor authentication to secure online banking services for its customers. …

Nov 27, 2013
YubiX: Reference Auth Software
Yubico is happy to introduce a project that combines several of our server-side software packages: YubiX. YubiX is intended as a reference architecture software stack to demonstrate how to build robust and secure authentication systems that utilizes the YubiKey and YubiHSM hardware. While YubiX may be run directly as-is, it is not intended as a …

Oct 16, 2013
YubiSwitch and the YubiKey Nano
Ever felt like disabling the output of a YubiKey so you won’t trigger it accidentally? If you’re a Mac OS X user, you’re in luck! Angelo “pallotron” Failla has written an application that runs on the OS X status bar that automatically disables your YubiKey after a period of inactivity. Here’s a screen capture of …

Jul 24, 2013
Expanding YubiKey Keyboard Support
Hi. We’ve had a few queries about using the YubiKey with various keyboard layouts, so we thought we’ll spend some time describing the different methods available to do that. Like a USB keyboard, YubiKeys work via inputting scan codes as opposed to actual characters. This means that when you type, the keyboard only sends the …

Mar 7, 2013
The Future of Authentication FAQ
A selection of questions we have received and answered on YubiKey NEO and Universal 2nd Factor (U2F), since this new open authentication standards initiative was announced in Wired Magazine and the Yubico identity vision blog. Why do you want to kill the password? We don’t. Yubico does and will continue to recommend two-factor authentication, consisting …

Jan 21, 2013
Yubico’s Vision for Secure Online Identities
Wired Magazine recently announced that Google is working on a new online authentication initiative as an alternative to legacy username/password login. Yubico is the core inventor behind this protocol, designed to be integrated across a wide range of devices, including YubiKeys, to solve some of the fundamental problems with online identity. And these are problems …