• Contact Sales
  • Resellers
  • Support
Yubico Header Text LogoYubico Header Text Logo
Why Yubicoexpand_more
Why Yubico
  • Enterprises
  • SMBs
  • Individuals
  • Developers
  • Careers
  • Partner programs
  • Affiliate program
  • Contact Sales
  • Events
  • Press room
  • Yubico Blog
  • Yubico Executive Connect
  • About us
  • The team
  • Investors
  • Innovation history
  • Secure it Forward
Man holding YubiKey
Easy-to-use, secure authentication

With YubiKey there’s no tradeoff between great security and usability

Why YubiKey
  • Apple
  • ios authentication
  • smart card
Google headquarters
Proven at scale at Google

Google defends against account takeovers and reduces IT costs

Google Case Study
  • Apple
  • ios authentication
  • smart card
Hand holding YubiKey behind Apple iPhone
Protecting vulnerable organizations

Secure it Forward: One YubiKey donated for every 20 sold

Learn about Secure it Forward
  • Apple
  • ios authentication
  • smart card
Productsexpand_more
All products
  • YubiKey 5 Series
  • YubiKey 5 FIPS Series
  • YubiKey Bio Series
  • Security Key Series
  • YubiKey 5 CSPN Series
  • YubiHSM 2 & YubiHSM 2 FIPS
  • YubiEnterprise Subscription
  • YubiEnterprise Delivery
  • Yubico Authenticator
  • Computer login tools
  • Software Development Toolkits
  • YubiCloud
  • Using YubiKey is easy
  • Find the right YubiKey
  • Works with YubiKey
  • Compare YubiKeys
Woman holding YubiKey 5ci
One key for hundreds of apps and services

YubiKey works out-of-the-box and has no client software or battery

Yubico protects you
  • Apple
  • ios authentication
  • smart card
See YubiKeys as a Service
YubiEnterprise Subscription delivers scale and savings

Gain a future-proofed solution and faster MFA rollouts

See YubiKeys as a Service
  • Apple
  • ios authentication
  • smart card
Solutionsexpand_more
Solutions overview
  • Zero Trust
  • Executive Order OMB M-22-09
  • Phishing-resistant MFA
  • Passwordless
  • Compliance
  • Cyber Insurance
  • Secure supply chain
  • Critical infrastructure
  • Hybrid & remote workers
  • Secure privileged users
  • Mobile restricted environments
  • Call centers
  • Shared workstations
  • Microsoft ecosystem
  • Salesforce workspace
  • IAM solutions
  • AWS environment
  • HYPR experience
Hand holding YubiKey behind Apple iPhone
The Bridge to Passwordless

Begin the journey to make your organization passwordless

Get the white paper
  • Apple
  • ios authentication
  • smart card
Lock on a laptop
Accelerate your Zero Trust Strategy

7 best strong authentication practices to jumpstart your Zero Trust program

Get the white paper
  • Apple
  • ios authentication
  • smart card
Government building
Federal cybersecurity requirements

See guidance for CIOs and leaders to prepare for the modern cyber threat era

Get the white paper
  • Apple
  • ios authentication
  • smart card
Industriesexpand_more
Industries overview
  • High tech
  • Federal government
  • Federal systems integrators
  • State & local government
  • Education
  • Financial services
  • Elections & campaigns
  • Retail & hospitality
  • Telecommunications
  • Healthcare
  • Pharmaceuticals
  • Cryptocurrency
  • Energy & natural resources
  • Manufacturing
man working a manufacturing line
Manufacturing and supply chain security

Authentication best practices for manufacturing using highest-assurance security

Get the white paper
  • Apple
  • ios authentication
  • smart card
Person looking at a computer with a government building showing
Phishing-resistant MFA: Fact vs. Fiction

Meet requirements for phishing-resistant MFA in OMB M-22-09 guidelines

Get the white paper
  • Apple
  • ios authentication
  • smart card
Remote workers at a wind farm
Secure energy and natural resources from cyber threats

Best practices for phishing-resistant MFA to safeguard your critical infrastructure

Get the white paper
  • Apple
  • ios authentication
  • smart card
Resourcesexpand_more
All resources
  • Yubico Blog
  • Cybersecurity glossary
  • Authentication standards
  • Resource library
  • Developer program
  • Product briefs
  • Solution briefs
  • Case studies
  • Get a pilot started
  • White papers and reports
  • Webinars
Laptop with a YubiKey inserted
BeyondTrust: secured with a subscription

A leader in Privileged Access Management simplifies YubiKey deployment

How they optimized ROI
  • Apple
  • ios authentication
  • smart card
S&P Global Market Intelligence report: old habits die hard

Only 46% of respondents protect their applications with MFA. How about you?

Read the report
  • Apple
  • ios authentication
  • smart card
Considering Passkeys for your Enterprise?

Learn how to avoid the common pitfalls of synced passkeys

Get the Ebook
  • Apple
  • ios authentication
  • smart card
Supportexpand_more
Support home
  • Find the right YubiKey
  • Set up your YubiKey
  • Downloads
  • Product documentation
  • Support articles
  • Support Services
  • Professional Services
  • YubiEnterprise Subscription
  • Works with YubiKey Program
  • Buying and shipping information
  • Security advisories
  • Help center
YubiKeys in lots of form factors
How to set up your YubiKey

Follow our guided tutorials to start protecting your favorite services

Set up your YubiKey
  • Apple
  • ios authentication
  • smart card
YubiKey on a keychain plugged into a laptop
Find the best YubiKey for your needs

Take the guided quiz and see which YubiKey best fits your or your businesses needs

Take the quiz
  • Apple
  • ios authentication
  • smart card
Worker with a calculator and laptop with a spreadsheet
Accelerate your YubiKey deployment

Technical and operational guidance for your YubiKey implementation and rollout

Professional Services
  • Apple
  • ios authentication
  • smart card
SubscribeStore
  • Home » Blog » Yubico Pioneers the Simplification of Smartcard Support on Mobile for iOS

    Yubico Pioneers the Simplification of Smartcard Support on Mobile for iOS

    Kanika Thapar

    Kanika Thapar

    September 28, 2021
    5 minute read
    Share on FacebookShare on TwitterShare on LinkedInShare via Email

    Yubico is committed to enabling YubiKey integrations for all of our technology partners and enterprise customers with the least amount of friction and time-to-market as possible. With this goal in mind, we are very excited to announce the public general availability of our Yubico Authenticator for iOS app that now supports YubiKey-based smartcard login alongside OATH credentials. For both smartcards and OATH, a YubiKey is required with the app as the credentials reside on the YubiKey. This now unlocks more use cases, and enhances security, by allowing users to securely access smart card-protected resources like certificate-based VPN and email from their iOS mobile devices using hardware security keys. US government agencies requiring the highest authenticator assurance at level 3 (AAL3), will need an authenticator like a PIV compliant smart card or FIDO/WebAuthn security key that is validated with FIPS 140 Level 2 overall and Level 3 physical security. YubiKeys are validated at these levels with Certificate #3914 and able to be used as both a PIV smart card and FIDO/WebAuthn security key for logging into mobile devices, laptops and desktops.

    The Growing Customer Need

    With remote work exploding and a continually expanding attack surface in both public and private sectors, we saw the need for our customers to provide secure mobile authentication without compromising on user experience or compliance. 

    According to the latest U.S. Office of Management and Budget (OMB) draft release on Federal Zero Trust Strategy in support of Executive Order 14028, “Improving the Nation’s Cybersecurity”, “Agency systems must require internal users to use a phishing-resistant method to access their accounts. For routine self-service access by agency staff, contractors, and partners, agency systems must discontinue support for authentication methods that fail to resist phishing, such as protocols that register phone numbers for SMS or voice calls, supply one-time codes, or receive push notifications.”

    Furthermore the guidance states, “This requirement for phishing-resistant protocols is necessitated by the reality that enterprise users are among the most valuable targets for phishing, but can be given phishing-resistant tokens, such as PIV cards, and be trained in their use. For many agency systems, PIV or derived PIV will be the simplest way to support this requirement. However, agencies’ highest priority should be to rapidly implement a requirement for phishing-resistant verifiers, whether this is PIV or an alternative method, such as WebAuthn.”

    Our federal customers want to ensure that authenticators with the highest  authenticator assurance level (AAL3) can be used on iOS devices, including access to smartcard-protected resources such as email, and secure signing of documents.

    What’s New?

    Last year, Apple opened up the cryptotokenkit that allows access to security tokens and cryptographic resources from the iOS keychain. This enables the public part of the smartcard certificate on YubiKeys to securely move to the iOS keychain (the private part of the smartcard certificate never leaves the YubiKey). With this capability our customers can now leverage the new Yubico Authenticator for iOS app to securely onboard the certificate from the YubiKey to the iOS keychain and then use that credential across any native app like Safari or any app that has an embedded Safari browser.

    How does the Smartcard Capability in the Authenticator for iOS App Work?

    Three easy steps for one-time registration:

    1. Have a PIV-enabled YubiKey with a smartcard certificate provisioned on it
    2. Download the Yubico  Authenticator for iOS app on your iPhone with v14.2 or later
    3. Open the app, insert the YubiKey or tap over NFC and follow simple steps to upload certificate to iOS keychain

    That’s it! Now you can use this certificate across multiple apps like the Safari browser, certificate-based VPN, and document signing.

    How to Get Started?

    After an extensive private beta across US and Europe with our public sector and enterprise customers, we are excited to announce the general availability of this app in our iOS app store.  All you need is a PIV-enabled YubiKey! Any key from the YubiKey 5 Series or the YubiKey 5 FIPS Series offers multi-protocol capabilities, including Smart card/PIV functionality.

    Why Yubico?

    Yubico is the pioneering company behind modern, mobile, user friendly and phishing resistant hardware-based authentication solutions, proven to stop account takeovers at scale. We are excited to have worked with Apple in bringing this new PIV smart card functionality first to the iOS market for our customers and partners, offering accountability and reporting for all routes-to-market:

    1. Smartcard usage across apps: Turnkey solution to onboard smartcard certificates to keychain launching today
    2. Smartcard usage within an app: iOS and Android SDKs’s supporting smartcard support

    Why Apple?

    Apple has been a pioneer in building highly secure and user friendly mobile devices. With the cryptotokenkit enhancements, Apple opens up the ecosystem to build easy to use, and secure apps on its platform for public sector and enterprises alike. It also incentivizes the iOS developer ecosystem and technology partners like MDM vendors and VPN solutions to invest heavily in iOS apps in order to better enable their use cases.

     

    Share this article:

    Share on FacebookShare on TwitterShare on LinkedInShare via Email

    Recommended Posts

    • Q&A with CEO Mattias Danielsson: Yubico’s next stage of growth as a public company and what investors can expect

      Today marks an exciting, historic day in Yubico’s history: the company is now publicly traded under the ticker symbol YUBICO on Nasdaq First Growth North Market in Stockholm. As the cyber threat landscape continues to evolve rapidly through increasingly sophisticated attacks like phishing, the need for phishing-resistant MFA with the YubiKey are at an all-time […]

      Read more
      • Investors
      • Q&A
      • thought leadership
    • Five foundational cybersecurity controls to mitigate 90% of breaches

      During my 16 years in the cybersecurity industry, and after discussions with numerous CISOs and cyber security experts, they all agree that there are five easy steps all organizations can take to mitigate over 90% of all cyber breaches1.  Just like cars were not initially designed for safety, the internet was not designed for security. […]

      Read more
      • best practice guide
    • Okta + Yubico: Better together

      Modern cybersecurity needs to be phishing-resistant, but it also needs to incorporate a great user experience for employees, IT teams and customers. We know traditional authentication methods are perceived as user-friendly, but they are not secure and vulnerable to most attacks  – in fact, 59% of people still rely on username and password to authenticate […]

      Read more
      • Okta
      • Partner Program
    • Works with YubiKey Spotlight: How Yubico works with industry leaders who share the commitment to strong authentication

      As the cyber threat landscape continues to evolve rapidly in the form of more sophisticated attacks like phishing and ransomware, the need for industry collaborations and partnerships are more critical than ever to help businesses and consumers stay secure online. We first launched the Works with YubiKey (WWYK) program in 2018 with this in mind […]

      Read more
      • Works with YubiKey
      • wwyk
Yubico Text LogoYubico Text Logo
  • RSS
  • Twitter
  • LinkedIn
  • Facebook
  • Instagram
  • YouTube
  • GitHub
  • Product finder quiz
  • Find set-up guides
  • Buy online
  • Contact sales
  • Get Yubico updates
  • Careers
  • Events
  • Press room
  • About us
  • Investors
  • Partner programs
  • Affiliate program
  • YubiKey 5 Series
  • YubiKey 5 FIPS Series
  • YubiKey Bio Series
  • Security Key Series
  • YubiKey 5 CSPN Series
  • YubiHSM 2 & YubiHSM 2 FIPS
  • Yubico Authenticator
  • Zero Trust
  • Phishing-resistant MFA
  • Passwordless
  • Cyber insurance
  • More solutions
  • Industries overview
  • Yubico blog
  • Resource library
  • Cybersecurity glossary
  • Authentication standards
  • Developer program
  • Works with YubiKey
  • Help center
  • Downloads
  • Product documentation
  • Support Services
  • Professional Services
  • Contact support
Yubico © 2023 All Rights Reserved.
  • Sitemap
  • Cookies
  • Legal
  • Privacy
  • Patents
  • Terms of use
  • Trust