Yubi Key

The YubiKey prevents unauthorized access to user accounts with unmatched security, usability, and affordability. Proven and trusted with the world’s largest brands – including Google, Facebook, and Saforce.com employees – and millions of global users.

The YubiKey is a hardware authentication device manufactured by Yubico that supports one-time passwords, public-key encryption, and authentication. It is the Universal 2nd Factor (U2F) protocol developed by the FIDO Alliance. It allows users to securely log in to their accounts by emitting one-time passwords or using a FIDO-based public/private key pair generated by the device. YubiKey also allows for storing static passwords for use at sites that do not support one-time passwords. Facebook uses YubiKey for employee credentials, and Google supports it for both employees and users. Some password managers support YubiKey.

The Yubikey implements the HMAC-based One-time Password algorithm (HOTP) and the Time-based One-time Password algorithm (TOTP). It then identifies itself as a keyboard that delivers the one-time password over the USB HID (human interface device) protocol. The YubiKey NEO and YubiKey 4 include protocols such as OpenPGP card using 2048-bit RSA and elliptical curve cryptography (ECC) p256 and p384, Near Field Communication (NFC), and FIDO U2F. The YubiKey allows users to sign, encrypt, and decrypt messages without exposing the private keys to the outside world. The 4th generation YubiKey launched on November 16, 2015. It has support for OpenPGP with 4096-bit RSA keys, and PKCS#11 support for PIV smart cards, a feature that allows for code signing of Docker images. Ask your Kipu representative for more information at 561.349.5901.

Optional Feature – One time Yubi-Key purchase required