U2F, WordPress and Security for the People

Stina Ehrensvard

Stina Ehrensvard

2 minute read

Only a few weeks after Google announced U2F support and the protocol’s technical specifications were published, a U2F plugin for WordPress popped up and proved that U2F is the simple and open authentication protocol we envisioned it to be. High-security, public key hardware is no longer limited to a few enterprises and government services, but available today for everyone.

Today, we live in a world where both security and speed are critical for working on the Internet. If you are afraid that strong authentication will delay your login process, give the U2F Security Key for your Gmail account a try – you will be surprised how easy it is.

Once you have linked the U2F Security Key with your Google account, the account password and a touch of your U2F device is all you need for strong authentication. Google can remember your password and key for a month at a time, which allows you to click the Gmail shortcut on your desktop or smartphone for instant secure login to your email. Just press your email icon and you are in! How much easier can it be? (There is also an option to require the key be touched before each login).

As a driving U2F contributor, Yubico welcomes the U2F WordPress plugin developed by Daisuke Takahashi and available on GitHub. If you are a developer and considering implementing U2F authentication for your software or service, the Yubico team is happy to help. We offer free and open source U2F reference code and U2F powered YubiKeys.

U2F is here to support high speed, high security, high privacy and lower-cost trust models for the Internet. It’s Universal 2nd Factor and security for the people.

Talk to our teamTalk to our team

Share this article:
  • Securing the skies with YubiKeys: Insights on cyber resilience in the aviation industry and beyondIn an increasingly interconnected world, the landscape of cybersecurity is constantly evolving. Bad actors are becoming more sophisticated, leveraging tactics like phishing and ransomware to exploit human error and weak credentials. This makes robust cybersecurity a universal issue, impacting everyone from individuals to the largest global enterprises – especially those in high-stakes sectors like commercial […]Read morecyber resilienceEUmanufacturingQ&A
  • Future-proofing authentication: A look at the future of post-quantum cryptographyThe path from passwords to passkeys and beyond In a previous blog I talked about the end of passwords and the rise of passkeys, which promise stronger security and less frustration for both individuals and businesses. The global momentum behind passkeys represents one of the most exciting shifts in authentication history, but realizing their full […]Read more
  • Goodbye master passwords: Dashlane and Yubico enhance credential vault encryption and login with YubiKeysAt Authenticate 2025 this week, the world’s leading experts on modern authentication and securing digital identities gathered, to discuss the future of secure authentication and achieving usable security across the account lifecycle. The message was clear: the future of phishing-resistant authentication is using passkeys for encryption, and the gold standard is device-bound passkeys – YubiKeys. […]Read morecredential vault encryptioncredential vault loginDashlanepartnerpasskey encryptionPRF
  • Piloting Europe’s future ID: Passkeys securing digital walletsOver the last several years, passkeys have become ubiquitous. They are available on every mobile platform, in every leading browser, as part of all major enterprise IAM solutions, and in most major cloud services. Until wwWallet came along, the only place where passkeys hadn’t yet made an impact is in the rapidly developing world of […]Read moredigital identity walletspasskeysSIROSwwWallet