Strong authentication for call centers

Maximize productivity and secure access to sensitive data

Maximize call center productivity

In call centers, using mobile phones for authentication is not optimal given poor levels of security, distractions, and reduced agent productivity.

The YubiKey enables strong authentication without a cellular connection, batteries or any other external dependency to operate. Simply plug the key into a USB port on the device, and touch to authenticate.

Mitigate insider threat risk

Mobile devices used for authentication enable perpetrators to easily capture sensitive data on cameras without being noticed.

The YubiKey delivers strong authentication without offering any capabilities for capturing images of customer and financial data, thereby protecting customer privacy and call center reputation.

Meet compliance requirements

Stringent compliance requirements make it critical to ensure that call center agents abide by all relevant regulations during every instance of customer engagement.

The YubiKey can verify a call center agent’s identity before they can access PII and other sensitive data, or make changes to a customer account, such as raising a credit limit.

Case in point:

Large financial services corporation secures global workforce


Large financial corporation specializing in credit cards, auto loans, banking, and savings accounts, and ranked in the top 10 largest banks in the United States by assets.

Call Centers – Needed to secure global workforce with shared workstations; secure front-line to customers with sensitive PII & PCI data

Retail Workers – Needed a fast and seamless login in order to deliver efficient customer service

Privileged Access – Secure data accessed by executives, knowledge workers and other privileged users

YubiKey Solution:

Ease of Use – Enables rapid login and supports response time SLAs

Low TCO – Supports OTP in place, with plans to adopt modern authentication approaches such as FIDO U2F as well as smart card PIV all with one single security key for low TCO

IAM Integration – Supports single sign-on and federation with existing IAM backend


1,400,000 total accounts secured, including 118,000 privileged accounts

Call center response time SLAs supported

Reduced support incident burden on central IT for security key registration

“Call center fraud loss is having a significant effect on enterprises. Across the U.S., companies are losing $14 billion to fraud attacks annually.”
Pindrop Labs 2017
“Almost half (47 percent of respondents) say a transaction could not be completed because they did not have mobile phone access to recieve a code for verification or were not able to use an authenticator app.”
The 2019 State of Password and Authentication Report, Ponemon Institute

Get Started

YubiKey 5 series
Find the right YubiKey

Contact our sales team for a personalized assessment of your company’s needs.

hand holding YubiKey in front of a red phone booth
Get protected today

Browse our online store today and buy the right YubiKey for you.

Recommended content


Modern strong authentication and compliance for Financial Services

Read this white paper to learn how strong authentication using the YubiKey can help financial institutions stay protected against cyber attacks, and meet regulatory compliance for FFIEC, PCI DSS, GLBA, PSD2, eIDAS, SOX, SOC2, GDPR, and more.


Drive differentiation in financial services with modern strong authentication

Drive competitive differentiation by offering modern strong authentication for online and mobile banking


Securing Your Critical Assets in an Ever-Changing Regulatory Environment

Learn how the YubiKey helps organizations meet global compliance regulations including FIPS, GDPR, HIPAA and others with modern strong authentication


What is Strong Authentication

Strong Authentication Definition Strong authentication is a way of safely and reliably confirming user identity. Multi-factor authentication (MFA) is one of the best options to establish trust with users, but actual strong authentication goes beyond MFA or two-factor authentication (2FA). When implementing MFA, at a minimum, follow the National Institute for Standards and Technology (NIST)