It’s easier than you think for someone to get your password

Any of these common actions can put your password at risk:

  • Using the same password with more than one site
  • Downloading software
  • Clicking links in email, on Facebook, or other sites

YubiKeys and U2F Security Keys help keep bad guys out, even if they have your password.

Trust every post from friends and brands

When a bad guy steals your password, they can post anything to your timeline. It’s not only annoying, but also:

  • It can damage your reputation
  • Bad guys can pretend to be you and send unwanted, or harmful messages to your friends
  • Fraudsters can use your personal information to reset passwords for your other accounts (banking, shopping, and more)

Journalists and human rights are protected

YubiKey is a simple way for users to take control of their own security and privacy.

We believe every person has the right to choose what they share about their identity. One Security Key can be used for multiple identities and services, including for work, personal use, and anonymous. No personal information is saved to the key.

Logging in to Facebook will be a little different

1 You’ll enter your password
Whenever you log in to Facebook, you’ll enter your password as usual.

2 You’ll be asked for your Security Key
Then, you insert your YubiKey or FIDO U2F Security Key into your computer’s USB port.

Screen capture of a Security Key Checkpoint on Facebook
Man holding a FIDO U2F Security Key by Yubico

Keep login simple

You don’t have to use the Security Key every time you login. You can choose not to use two-factor authentication again on that particular computer. From then on, Facebook will only ask for your password on that computer until you clear your browser’s cookies.

You’ll still be covered, because when you or anyone else tries to log in to your account from another computer, your YubiKey or FIDO U2F Security Key will be required.

Login on the go

With a Security Key, you can remove the Text Message (SMS) security option, which will raise your security for all mobile devices, including iPhones.

To achieve the strongest level of protection on mobile, use a YubiKey NEO to log in to with an NFC-capable Android device on the latest version of Chrome.

At this time, Facebook is working to support Security Keys on the mobile Facebook app.

Photo of the Facebook Mobile Login screen and a YubiKey NEO

Phishing protection

Your login is practically immune to phishing, because you don’t have to enter a code yourself and the hardware provides cryptographic proof that it’s in your machine.


Security Keys that support U2F don’t just work for Facebook accounts. You can use the same key for any supported online account, and those accounts can stay safe because the key doesn’t retain any records of where it is used.

Fast login

If you use a Security Key with your desktop computer, logging in is as simple as a tap on the key after you enter your password.

[yubico_popup pid="8368" onsale="1" nametext="" buytext="Buy FIDO U2F Security Key" image="1" extra="aviaTBhide_extra"]

FIDO U2F Security Key | $18

One-touch login for Facebook, Gmail, Dropbox, and all U2F supported services.

FIDO U2F authenticator
Compare keys

[yubico_popup pid="88265" onsale="1" nametext="" buytext="Buy YubiKey 4" image="1" extra="aviaTBhide_extra"]

YubiKey 4 | $40

One-touch login for Facebook, Gmail, Dropbox, all U2F supported services, and others.

FIDO U2F & smart card authenticator
Compare keys

[yubico_popup pid="8363" onsale="1" nametext="" buytext="YubiKey NEO" image="1" extra="aviaTBhide_extra"]

YubiKey NEO | $50

One-touch login for Facebook, Gmail, Dropbox, all U2F supported services, and others.

FIDO U2F & smart card authenticator with NFC
Compare keys