YubiKey Hardware (2024)

Table of Contents
What is a YubiKey? YubiKey form factors How does a YubiKey work? What can a YubiKey do? FAQs

YubiKey Hardware (1)

What is a YubiKey?

A YubiKey is a multi-protocol multi-factor hardware authenticator, providing strong authentication to a wide range of services and situations. While YubiKeys come in a number of different form-factors, each is built around the same core chipset and firmware, allowing a uniform experience regardless of the model used.

YubiKey form factors

YubiKey 5 USB-A

YubiKey 5 NFC

YubiKey 5 Nano

YubiKey 5C

YubiKey 5C Nano

YubiKey 5C NFC

YubiKey 5Ci

YubiKey Hardware (2)

YubiKey Hardware (3)

YubiKey Hardware (4)

YubiKey Hardware (5)

YubiKey Hardware (6)

YubiKey Hardware (7)

YubiKey Hardware (8)

USB-A

USB-A / NFC

USB-A

USB-C

USB-C / NFC

USB-C

Lightning / USB-C

YubiKeys can connect to computers via a direct physical connection (USB-A, USB-C or the Apple Lightning port) or, for some models, via Near Field Communication (NFC). Regardless of how the device is connected to another machine, the interactions of all of the functions remain the same.

For details specific to each device series, refer to the Yubico Technical Manuals for each device.

Each YubiKey has a unique serial number identifying the specific device. The serial number is printed on the YubiKey’s body (both as a number as well as a 2D barcode for some models), as well as being accessible by a number of different functions by a connected computer. Regardless of how the serial number is read, it will remain the same, allowing for a uniform method of inventory tracking in both the physical and cyber spaces.

See Also
Can You Use A Yubikey For Multiple Accounts?Why we designed the YubiKey the way we did

How does a YubiKey work?

When connected to another computer, the YubiKey identifies itself as a composite USB device, depending on the number of functions active. When connected physically, the YubiKey will have a different identifier depending on its current state. These Product ID and iProduct values are listed in the document, YubiKey USB ID Values guide.

When communicating with a PC or mobile platform, the YubiKey will identify itself as three devices: either a USB HID Keyboard (direct physical connection) or passive NFC NDEF Tag (NFC only); a CCID reader with a smart card inserted; and a HID FIDO Authenticator. Communication for various functions on the YubiKey will use one of the three channels.

The HID Keyboard interface passes output from the YubiKey to the host system as keystrokes from a virtual keyboard, and can use the HID Keyboard channel to communicate back to the YubiKey. For NFC interactions, this is replaced using the NFC Data Exchange Format (NDEF) tag to pass data to the host device. The CCID interface uses the standard smart card transport and Application Protocol Data Units (APDUs) to interact with the YubiKey. Finally, the HID FIDO communication allows for FIDO Client to Authenticator Protocols (CTAP1/2) to communicate with the YubiKey for U2F or WebAuthn Authentication.

Every YubiKey has a gold contact which allows for a physical touch to be utilized. This allows functions on the YubiKey to require an actual human to trigger them, protecting against software attacks attempting to hijack the functions of the YubiKey remotely. When using NFC, the act of tapping a YubiKey against an NFC reader provides the same function.

To provide direct feedback to users, every YubiKey has an LED which will light up when the YubiKey is being communicated with, or will flash when the YubiKey requires user action.

What can a YubiKey do?

The YubiKey has five functions which support all of the authentication protocols supported by the YubiKey, with an internal management function for managing the YubiKey itself. These functions are referred to as Applications, and include:

On the YubiKey, each Application has a dedicated memory space within the secure cryptographic element, and no Application can access data stored in any of the others. For more details on what data can be stored in the YubiKey, refer to YubiKey User-Loaded Data.

The YubiKey Management Application provides the serial number and YubiKey firmware version to the other Applications, as well as being able to turn on or off access to the other functions over the physical port or NFC communication channels. Further, the YubiKey Management Application can be secured with a 16 byte lock code, preventing unauthorized modification to the YubiKey.

YubiKey Hardware (2024)

FAQs

Why is YubiKey so expensive? ›

It is costly to design, mould, manufacture, sell and support a hardware product, even something as small as this. Since you don't want your 2FA company to go out of business there is good value in knowing they have a stable business model that can actually support a company rather than just burning capital.

Read On
What is the lifespan of a YubiKey? ›

A Yubikey will essentially last forever, and if you stay clear of the insanity that is Passkeys its Webauthn element can support an infinite number of websites. Portability: I have a smartphone, a work laptop, a home laptop, and a home desktop. My Yubikey has USB and NFC, so it can trivially be used with all of them.

Discover More Details
What is inside a YubiKey? ›

The Infineon chip is a 16-bit dual-CPU microcontroller with 512Kb of flash and 16Kb of RAM. The chips' CPUs perform cross-verification of each other's calculations, thus protecting the integtity of data, which makes it difficult to tamper with the chip.

Continue Reading
Should I leave my YubiKey plugged in all the time? ›

Do I need to keep my yubikey plugged in all the time? A. No, you only need to insert your yubikey when you are prompted to do so during login. Leaving it plugged in could result in the yubikey being lost or damaged.

See Details
Is it worth buying YubiKey? ›

The Yubico YubiKey 5C NFC supports many authentication protocols, so it works anywhere security keys are accepted. If you can make the most of its advanced features, such as signing and encrypting with OpenPGP, it's well worth the price.

Find Out More
Can a YubiKey be hacked? ›

While YubiKey is designed to be secure, it is not immune to attacks. There have been instances where YubiKeys have been hacked or compromised. Common attack vectors on hardware keys include physical attacks, side-channel attacks, and firmware vulnerabilities.

Tell Me More
What if someone steals my YubiKey? ›

If you lose your Yubikey, you can still use your phone authenticator app, but you cannot create a backup Yubikey. However, Yubikey also provides methods to recover your account, so you can get a replacement. An advantage to Yubikey is that it comes on a USB that cannot be identified.

Show Me More
Can YubiKey get malware? ›

Yubico's YubiKey is built on a foundation of strong authentication. This robust resistance to phishing offers malware protection because it hinges on the ability to detect these attacks before they take place.

Explore More
Can YubiKey be tracked? ›

Status.io is a hosted status page platform that supports YubiKey authentication, providing companies a simple and secure way to track incidents, schedule planned maintenances, and broadcast status notifications.

Continue Reading
What happens when you touch YubiKey? ›

The act of tapping and holding an NFC-enabled YubiKey to the NFC reader on a mobile device takes the place of touching the gold contact to generate an OTP. The OTP is passed as part of the NDEF tag, which is supported on most mobile devices with NFC.

Show Me More

How many YubiKeys should you have? ›

A: Many of our customers actually purchase several spares for maximum security and peace of mind. This is not a bad idea when guarding extremely critical accounts. Starting off, you should be fine with 1-2 spare keys.

Read The Full Story
Do you tap or insert your YubiKey? ›

Insert YubiKey & tap

On a computer, insert the YubiKey into a USB-port and touch the YubiKey to verify you are human and not a remote hacker.

See Details
Does YubiKey require a subscription? ›

You can purchase directly from Yubico or you can purchase from Yubico's channel partners, i.e., distributors and resellers (see Purchasing Through Resellers/Distributors below). There are two modes of purchase, Subscription or Non-subscription (Perpetual).

Get More Info Here
Is it safe to buy YubiKey from third party? ›

Yubico highly recommends not purchasing keys from un-approved sources. Only keys purchased from our web-store or authorized resellers are valid for warranty service. Keys purchased from resellers are subject to that reseller's warranty and return policies.

Continue Reading
What is special about YubiKey? ›

The YubiKey supports one-time passcodes (OTP)

The YubiKey communicates via the HID keyboard interface, sending output as a series of keystrokes. This means OTP protocols can work across all OSs and environments that support USB keyboards, as well as with any app that can accept keyboard input.

View More
How many times can a YubiKey be used? ›

With WebAuthn, you can use the same YubiKey for unlimited sites and accounts. Just make sure to keep your YubiKey in a safe place and don't share it with anyone else.

View Details
Is YubiKey made in China? ›

Made in Sweden & USA.

See More
Top Articles
10 Qualities of a Good Teacher
Tips To Master Error Spotting In English Language Section
Maria Dolores Franziska Kolowrat Krakowská
Amtrust Bank Cd Rates
Koordinaten w43/b14 mit Umrechner in alle Koordinatensysteme
How Much Is 10000 Nickels
According To The Wall Street Journal Weegy
Kris Carolla Obituary
Strange World Showtimes Near Cmx Downtown At The Gardens 16
Remnant Graveyard Elf
Spelunking The Den Wow
Knaben Pirate Download
Power Outage Map Albany Ny
Yesteryear Autos Slang
Used Wood Cook Stoves For Sale Craigslist
Chicken Coop Havelock Nc
Https://Store-Kronos.kohls.com/Wfc
24 Best Things To Do in Great Yarmouth Norfolk
Louisiana Sportsman Classifieds Guns
Diamond Piers Menards
Everything you need to know about Costco Travel (and why I love it) - The Points Guy
라이키 유출
Glenda Mitchell Law Firm: Law Firm Profile
Craigslist Prescott Az Free Stuff
Best Transmission Service Margate
Boston Dynamics’ new humanoid moves like no robot you’ve ever seen
A Cup of Cozy – Podcast
Disputes over ESPN, Disney and DirecTV go to the heart of TV's existential problems
Suspiciouswetspot
Pain Out Maxx Kratom
Kroger Feed Login
Marokko houdt honderden mensen tegen die illegaal grens met Spaanse stad Ceuta wilden oversteken
Where to eat: the 50 best restaurants in Freiburg im Breisgau
Lilpeachbutt69 Stephanie Chavez
Evil Dead Rise Showtimes Near Regal Sawgrass & Imax
25Cc To Tbsp
Learn4Good Job Posting
'Conan Exiles' 3.0 Guide: How To Unlock Spells And Sorcery
Craigslist Free Stuff San Gabriel Valley
Lil Durk's Brother DThang Killed in Harvey, Illinois, ME Confirms
Telegram update adds quote formatting and new linking options
All Characters in Omega Strikers
Trivago Sf
Pekin Soccer Tournament
Login
Reilly Auto Parts Store Hours
Sky Dental Cartersville
Mega Millions Lottery - Winning Numbers & Results
Strange World Showtimes Near Century Federal Way
Who We Are at Curt Landry Ministries
Blippi Park Carlsbad
Latest Posts
What is the Google Critical Security Alert email? - DuoCircle
Can a Magnet Really Damage My Phone or Computer?
Article information

Author: Mr. See Jast

Last Updated:

Views: 6372

Rating: 4.4 / 5 (75 voted)

Reviews: 90% of readers found this page helpful

Author information

Name: Mr. See Jast

Birthday: 1999-07-30

Address: 8409 Megan Mountain, New Mathew, MT 44997-8193

Phone: +5023589614038

Job: Chief Executive

Hobby: Leather crafting, Flag Football, Candle making, Flying, Poi, Gunsmithing, Swimming

Introduction: My name is Mr. See Jast, I am a open, jolly, gorgeous, courageous, inexpensive, friendly, homely person who loves writing and wants to share my knowledge and understanding with you.