Yubico YubiKeys make the internet safer with phishing-resistant multi-factor authentication (MFA) by providing simple and secure access to computers, mobile devices, servers, and internet accounts. The Yubico YubiKey stops account takeovers at scale by mitigating phishing and ransomware attacks, and delivers users authentication with a simple touch or tap.
Unliking rotating cyperkeys (RSA tokens), YubiKeys doesn't rely on additional hardware other than the key itself. They are less expensive and much easier to manage within the organization. Granted, they won't provide the same verification as an RSA token, but they do add the …
Yubico YubiKeys are way better than those old RNG tokens where you have to type in the number. The YubiKey enters the number for you and often can be used in other modes that don't require number entry at all. It is modern and convenient. I prefer authenticator apps like Google …
Duo and Yubico YubiKeys actually work very well together. We have chosen to use these two products together to make safe and secure MFA (including Passwordless) available to all users. The ease of use that Duo allows for both OTP import and WebAuthn enrollment makes it possible …
Yubico YubiKeys are a nice addition to a TOTP like GA. Since they are not battery based, they are incredibly reliable and always available, even if you've dropped your phone into the toilet. The only downside relative to TOTP is that some devices may not have the appropriate …
Significantly more secure than the phone based authenticators with a bit more overhead to implement successfully. The cost difference between something like Duo and Yubikeys is quite significant if you're operating without a FAANG type budget. We're fans of the touch "button" …
We used SecureAuth for a year or two but just the 2FA bit - it didn't help with compromised passwords to non-2FA'd apps. We now use Azure AD and MEM, which utilises MFA and integrate with most SSO apps.
I liked the Kensington Verimark fingerprint scanner initially because it made signing into Windows simple and secured it within the household, but didn't like the additional complexities of setting it up and needing a driver. That would have required the IT support team to …
Google Authenticator and Microsoft Authenticator are both consumer (and commercial) grade products so they are expected to be easy to use. When you move to a more advanced product such as Yubico, there's a reason why you are not using the "easier" methods. The reasons may …
Google Authenticator has very limited features available where Yubico can suffice all the authentication method requirements and can be installed on-premises as well. It can completely replace the Google Authenticator. Yubico has hardware based authentication as well apart from …
RSA token is another option used by many organizations. I think there is a definite benefit to soft tokens, but there's an inherent problem with them as well. If you have to reset your phone, you lose the ability to use that soft token until you set it up again, thus making …
Hardware-based authentication is much better than software-based because it cannot be forged. Also, users lose their software authenticators when they move to a new phone. Yubikey always works, does not need a battery, and is built around safety. The protocol is well defined …
I haven't used any other physical security devices previously. YubiKey and other tech giants like Google, Cisco, and RSA all offer some form of physical/hardware-based security, which is implemented at many workplaces. Yubico was selected for its comprehensive documentation, …