YubiKey Works With Windows Hello

September 27, 2016 2 minute read

With Windows 10, Microsoft is introducing its most complete authentication platform ever. The Anniversary Edition of the operating system includes expanded user verification options, standards-based authentication, and diverse management controls grouped under the name Windows Hello. YubiKey now works with this ecosystem.

Microsoft is spreading Windows Hello to enterprises and consumers, and across its platforms including desktops, mobile devices, Active Directory, Azure AD (which lives in the cloud), and independent cloud service providers that support modern FIDO Alliance protocols. The list of authentication methods include built-in biometrics, external companion devices, and smart cards/PKI.

This expanded list of authentication possibilities lands right in Yubico’s wheelhouse. YubiKey and its support for multiple protocols helps usher in the era of FIDO for Windows.

In Windows 10 language, Microsoft will support both key-based and certificate-based authentication. Key-based authentications are equal to the FIDO model of public key cryptography; while certificate-based authentication relates to smart cards and PKI. Enterprises that don’t use PKI, or want to minimize reliance on certificates, are prime converts for key-based Windows 10 authentication credentials. With a design focused on ease-of-use, it’s a natural place for end users to finally duck behind the protection of strong authentication.

The YubiKey is a versatile authentication device that is built for this environment. Our strategy around strong authentication includes supporting many standards-based authentication protocols for host-based and cloud-based services. Today, users of services such as Google, Dropbox, and GitHub have access to FIDO-based strong authentication with the YubiKey.

Initially, we have built a simple, single-function app called YubiKey for Windows Hello, which is now one of many options in Windows 10 for unlocking a computer. The app, built on the Windows Companion Device Framework, is available now in the Windows Store. To learn more about YubiKey for Windows Hello and see it in action, watch our video (below). Microsoft introduced Yubico’s app today during its annual Windows Ignite conference.

The Windows Hello platform will create many options, and Yubico will be ready to support them with a simple touch of the YubiKey.

Share this article:

Recommended content

Thumbnail

Combating ransomware attacks on your enterprise

What do a PC manufacturer, a meat supplier and a mental health clinic have in common? They have all been victims of ransomware attacks. They’re not alone. Ransomware attacks grew by over 485% in 2020, leveraging the new ransomware-as-a-service (RaaS) model of profit-sharing in exchange for ransomware tools.  One of the most infamous recent ransomware ...

Thumbnail

Top five pitfalls companies should avoid when rolling out a passwordless strategy

Given the number of breaches in the news today where passwords were at the root of the problem, many companies are now exploring the benefits of a secure passwordless future. Secure passwordless logins not only bring cost efficiencies and a more frictionless user login experience into the organization, but deliver the security that is necessary ...

Thumbnail

Built-in FIDO authenticators and YubiKeys are making the internet safer for all

In 2007, Yubico set out to protect as many people as possible by making secure login easy and available for everyone. We are happy Apple has joined Yubico, Google, and Microsoft on this journey by implementing W3C WebAuthn/FIDO compatible platform authenticators and are pleased to say that now all major platforms have adopted the standards ...

Thumbnail

Yubico donates 25,000 YubiKeys to Microsoft AccountGuard customers in 31 countries

Today, Yubico is proud to announce that we are expanding our partnership with Microsoft AccountGuard to deliver YubiKeys, free of cost, to high-profile and high-risk organizations. Last year, Yubico and Microsoft joined forces to equip political campaigns and parties with robust identity and access management (IAM) and phishing-resistant multi-factor authentication (MFA) solutions ahead of the 2020 U.S. elections. Now, we’re extending these same protections to international election campaigns, human rights defenders, healthcare workers, journalists, and other high-risk organizations in 31 countries.