YubiHSM 2

YubiHSM 2 plugged into an internal USB Port in a server

YubiHSM 2 - Beta

Securing secrets inside servers

What is an HSM?

A Hardware Security Module (HSM) is a special purpose device that safeguards and manages digital keys for strong authentication and crypto processing.

Functions include encryption, decryption, key generation, and hashing.

Why use an HSM?

When breaches happen, you will want your data to stay on your infrastructure and within your control.

HSMs increase the security of your architecture by adding a strong, physical layer between the server and the function of creating, storing, and using cryptographic keys.

Why choose YubiHSM 2?

Historically, HSMs come at a high cost with a lot of complexity. We believe hardware-based protection for servers should be within reach for everyone.

The YubiHSM 2 is an affordable, ultra-portable, highly-secure device for servers.

Call for Beta Testers

Space is limited. Apply today.

Next Generation Features & Benefits

High Security

  • Secure element used for cryptographic processing
  • Secure sessions at application-level

Unique form factor

  • Slim profile that sits inside a USB-A port
  • Ultra-Portable design (Weight: 1g, Dimensions: 12mm x 13mm x 3.1mm)
  • No moving parts or additional hardware maintenance once installed
  • No batteries

Powerful feature set

  • Works on all major operating systems (Windows, Linux, Mac)
  • Asymmetric:
    • PKCS#1v1.5, PSS, OAEP, ECDSA, ECDH
    • RSA: 2048, 3072, 4096
    • Elliptic Curve Cryptography (ECC): secp256r1, secp256k1, secp384r1, secp521r, bp256r1, bp384r1, bp512r1
  • Symmetric:
    • AES encryption/decryption
    • Counter based YubiOTP authentication
  • Hashing/Message Digest/HMAC: SHA [1, 256, 384, 512]
  • Cryptographic APIs: PKCS#11, Microsoft CNG Key Storage Provider (KSP)
  • Key Wrapping: AES CCM
  • Random Number Generation: NIST 800-90A AES-CTR


  • As low as $500/unit, volume pricing available upon request

How is YubiHSM 2 different from YubiHSM 1.5?

YubiHSM 1.5 solves a single use case: validate Yubico OTP. YubiHSM 2 introduces asymmetric cryptography and expanded capabilities for multiple use cases.

When will YubiHSM 2 be available for purchase?

We do not yet have a date for when the YubiHSM 2 will be available for purchase. You can join our waitlist to receive an email notification.