Yubico YubiKeys

Our organization prioritizes security at all levels, especially for accounts with sensitive access. We've strategically integrated YubiKeys into our authentication processes to protect both IT operations and high-profile individuals like our CEO, CFO, and sales team. These hardware tokens address multiple critical business security needs: Phishing Defense: Passwords are inherently vulnerable to phishing attacks. YubiKeys provide a phishing-resistant layer of security, guarding against unauthorized access even if credentials are compromised. Mitigating Account Takeovers: YubiKeys significantly decrease the risk of account takeovers. This is a major benefit for privileged users and employees handling sensitive data. Streamlined Admin Access: Our IT administrators use YubiKeys for simplified, secure logins to privileged Microsoft accounts and critical firewalls. Scope of Use: We've implemented YubiKeys across our IT administrator team and for high-profile end users with elevated access requirements. This provides robust protection for essential infrastructure and sensitive company data. We aim to expand YubiKey adoption throughout the organization in the future for maximum security coverage.

I have implemented Yubikey hardware security keys for additional authentication and access control to our most sensitive IT infrastructure and accounts. Yubikeys provides multi-factor authentication, requiring users to have a physical security key, username, and password to gain access. We initially rolled out Yubikeys to our server admins and engineers who require privileged access to our production servers, databases, and network devices. Requiring the Yubikey as a second factor prevents unauthorized access if their credentials are compromised. It also protects against phishing attempts.

We use Yubico YubiKeys to secure all of our most important company accounts. We make great use of its fido2 capabilities across many services. SMS 2fa is insecure and TOTP authenticator apps come with their own headaches and differ greatly across platforms. While Yubico YubiKeys mostly works consistently and simply across platforms. They also provide a very easy mental model for how employees should think of Yubico YubiKeys and the responsibilities involved. We simply tell everyone to treat their Yubico YubiKeys as if it were a physical key to the office. We also really love the Yubico YubiKeys bios, its UV feature is really great for things like LUKS full disk encryption or SSH keys. I hope Yubico releases a bios v2 YubiKey that greatly increases the resident key limit, increases the lockout attempt from 3 to 5, and adds NFC.

I have used multiple generations of Yubico YubiKeys and watched them improve over time. I like to keep them as a backup method for any account that can't be easily reset. If you lose your primary MFA device you can have a YubiKey locked in a safe that gives you a physical key back into the digital world. We also use them for employees who don't have or won't use a personal device as an MFA token. This is a better solution than buying company-owned smartphones.

Yubico YubiKeys are an essential part of our logins. When hired, every employee in my business unit receives a YubiKey 5c Nano along with their laptop. Since we are a hybrid workforce and many of us work from home, this allows us to log in with phishing-resistant MFA to all of our SaaS applications that are protected by Duo. Since WebAuthn is the standard from the start, this ensures that the highest level of protection is enforced from an authentication perspective. This has solved the issue of wondering whether or not users are logging in securely from disparate locations. It is also easy for users to authenticate with the tap of a finger to access critical applications - even in a Passwordless workflow!

We initially implemented Yubico YubiKeys as a replacement to our OTP token-based MFA solution, due to the old solution no longer satisfying our security requirements. We started by using them in the role of PIV/CAC for cert-based authentication but soon expanded to using them as FIDO2 devices for other systems. The flexibility and ease with which we were able to deploy this highly secure 2-factor solution are highlights of the product for us.

We use Yubico YubiKeys company-wide to secure all employee accounts. This is used for accounts on all 3rd party platforms that support it.

We implemented Yubico YubiKeys after having problems with constant phishing attempts being sent to our employees. We feel that the phishing-resistant protections provided by the Yubico YubiKeys, greatly increases our security posture.

Yubico Yubikeys are used for laptop authentication, password manager, 2FA, Google Domain 2FA, and Personal Encrypted Containers.

We use YubiKeys for MFA at the VPN and the server.

We use Yubico YubiKeys primarily for 2-factor authentication for all critical systems, including our on premises and cloud-based computing resources' password and authentication requirements, as required by our regulatory agencies. We've been a YubiKey customer for nearly a decade, and the product has worked flawlessly during the deployment. YubiKeys are bulletproof.

We use the Yubico YubiKeys as a multifactor authentication device. We needed to enhance our security posture and ensure the access was secure. Their devices work with computers, mobile phones, etc. The ability to have them locally controlled or remotely controlled is a main reason why we decide to go with them.

I utilize the Yubico Yubikey 5 series to enhance multi-factor authentication. It is great for another layer of authentication to secure many popular online platforms. As long as users physically carry the Yubikey with them they can securely authenticate with our SSO architecture. The only problem with the Yubikey is limited support for mobile devices at this time. So much more secure with various threat actors targeting It infrastructure these days...

Yubico YubiKeys are a fantastic 2FA option. These little guys last forever, are fairly inexpensive, and offer a highly secure means of verifying that the access is authorized. I own several keys in case I need a backup, but I've yet to lose one, or see one fail. Been using the same Yubico YubiKey for a decade...

Yubikeys are integrated with Userlock to provide 2FA for high risk users on a local active directory account. Also leveraged for a few 2FA functions on various websites. Stores multiple keys on one device making it a one stop shop for all our 2FA needs. Impressively durable during testing as users are quite hard on their devices here. Sent them through the wash, ran them over with a car etc. during testing and have only had one broken and we're still trying to figure out how the user did it. The story just doesn't line up for how tough these devices are.

Yubico is our go to for MFA and especially when it comes to anything that has elevated privileges that require phish resistance. We consistently expand our use cases as attacks become more common. We require MFA for almost any app that we use and Yubikeys are our only current hardware key we use in the company.

We are putting the solution in the hands of tomorrow's security leaders, introducing the potential impact by enabling Strong MFA and passwordless authentication. After years of Yubico's demonstrated value to the large MNCs I've served, securing IaaS, PaaS, and SaaS at scale, the collaboration with the non-profit that I serve only makes sense.

Yubico has helped us go passwordless by making SmartCard authentication and FIDO2 authentication in computers and mobile devices as easy as possible. Working with them on the software side has being a delight their SDK really helped us create amazing yubico integrations with EZCMS making new user onboarding better for everyone.

In my relatively small office, we use Yubico Yubikeys (specifically the 5C NFC) to secure access to the computers. I personally also use mine to secure our email server, our NAS that contains client files, and to secure our network & wifi routers. I opted to start using the Yubikeys because of the increase in cyber attacks and specifically the increase in ransomware attacks. Our state bar charges us with the requirement that we maintain competency in digital security and that we take take all necessary steps to protect client data and PII (like DOB, DL numbers, complete SSN, etc.). In the past I've noticed certain staff writing down their logins on post-it notes and either sticking them on their monitor or leaving them in the top desk drawer. I decided that rather than get after my staff and then try to monitor compliance, the Yubikeys were the way to go. Now even if they do leave their logins on a post-it note, no one will be able to access their computers without the physical key present. It wasn't a cheap solution, cheaper than a ransomware attack or having a client's PII compromised.

Using a Yubikey, logging into a workstation is so simple and secure. In an attempt to go passwordless and improve our security, we tried Yubico with SSO and OTP. It's a lot slicker than using a mobile phone and authenticator app or SMS messages - as long as the user doesn't lose their Yubikey!!

The business problem came from the requirement of MFA for remote users, where some were not comfortable using their personal cell phones to either receive text messages or install 3rd party verification applications. By supplying them with a YubiKey, we were able to achieve the standard of security we were looking for without requiring use of personal equipment.

With the implementation of multi-factor authentication (or two-factor authentication or MFA or 2FA) at the university, we were given a huge toolset to utilize in "second factoring." We were able to use Yubikeys, text and phone calls, and push notifications via DUO, and pre-arranged codes (for when internet is not available). Eventually we discontinued the telephony aspect but kept Yubikeys. They are a strong tool that is nearly impossible to defeat.

As we know, applications and technologies to use are increasing day by day and so are the user credentials. So, it is difficult to remember all those passwords as there are too many. In such scenarios, Yubico came as a life savior. The best thing about the Yubico authentication is that it supports both symmetric and asymmetric key encryption methods and passwords are encrypted.

Currently, we use Yubico as a single sign-on solution for our administrators. We recently migrated to Azure AD and Yubikey 5 supports passwordless authentication which is a big plus. We are investigating whether a rollout to all users would be beneficial. This will depend on business decisions of device types that we are going to support and where the key works.

Yubico's security key is used to provide an additional layer of security for accessing documents, passwords, information, and resources. It is used across the organization by all departments. It adds a physical element to information security/cybersecurity. As for the business problem, it doesn't address a specific "problem" so much as it prevents major problems from arising; by stringently adhering to security processes, including the use of physical keys, information access/dissemination is kept well controlled within the organization.