Open standard backed by leading Internet and financial services, including Google, Bank of America and 170 companies in the FIDO Alliance. With this approach no secrets are shared among service providers, and even low-cost U2F devices can support any number of services.ĭesigned for existing phones and computers, for many authentication modalities (keychain devices, mobile phone, fingerprint reader, etc.) and with different communication methods (USB, NFC, Bluetooth). A U2F device generates a new pair of keys for every service, the public key is only stored on the specific service it connects to. Each user can also choose to have multiple identities, including anonymous (no personal information associated with the identity). No codes to re-type and no drivers to install.Īllows users to choose, own and control their secure online identity. Works out-of-the-box, enabling instant authentication to any number of services. Protects against phishing, session hijacking, man in the middle, and malware attacks. The communication between the biometric secure element and the core one is then encrypted to mitigate eavesdropping and replay attacks.Īpplications are now open for the YubiKey Bio closed preview program.Strong 2nd factor authentication, using public key crypto and with native support in the browser (starting with Chrome). The company also separated the biometric subsystem from the key’s core functionality to reduce the potential impact of a security breach of biometric data. To address concerns related to the potentially incorrect reading of fingerprints, Yubico will allow users to use their PINs to login in case biometric authentication does not work due to variables in skin texture related to moisture or temperature. Upon inserting a YubiKey Bio into a computer, users are prompted to set up a PIN, as well as register their fingerprint to a Yubico account.Īfter that, every access to the USB drive’s content will be subject to biometric authentication via fingerprint.
The new devices are essentially USB sticks integrating a fingerprint sensor. The YubiKey Bio products, which are currently in private preview, have been developed to be compliant with various security standards, including FIDO U2F, FIDO2, and WebAuthn. Commenting on a blog post, the company said it has been looking at the development of biometric solutions for a while, but waited to release the YubiKey Bio to make sure the devices came with the best security standards possible. The YubiKey Bio are the first products in Yubico’s portfolio featuring biometric authentication capabilities. Dubbed the YubiKey Bio, the new devices will be available in both USB-A and USB-C form factors.
0 kommentar(er)
