Identity protection with Yubikey

Anti-phishing solutions: hardware keys, multi-factor authentication, passwordless login

Yubico MFA Keys

Setting U2F standards, creating FIDO2, successful cooperation with organizations storing data of billions of users such as Google, Salesforce or… CIA. These are just some of the achievements in Yubico’s portfolio. As pioneers in the field of cybersecurity, Yubico sets a new direction, where the classic login and password become a child’s puzzle.

As a Yubico partner in Poland, we perfectly understand that it is not enough to keep up with cybersecurity trends. Today, to effectively protect your company’s data, we should be ahead of them. That is why our portfolio of cybersecurity solutions includes YubiKey – a series of Yubico MFA physical keys from Yubico, an essential element of authentication.

Test Yubikey in your organization

What do you need to know about Yubikey?

Yubikey what is it?
How does Yubikey work?
What does it mean that YubiKey is phishing-resistant?
Rodzaje YubiKey
How to implement Yubikey in my organization?
YubiKey is NIS2 ready
Test Yubico MFA keys with authorized Yubico partner

Secure Passwordless Access – Meet Yubikey

YubiKey is a series of security keys developed by the Swedish company Yubico, which provides strong two-factor (2FA) and multi-factor (MFA) authentication based on protocols such as FIDO2, U2F, OTP and PIV. Thanks to this, YubiKey allows you to log in to various online accounts safely, without having to rely solely on passwords.

The solution supports services such as Dropbox, GitHub, Facebook, Microsoft and Twitter, which confirms their high compatibility and the security standards they offer to protect against cyberattacks.

YubiKey is a small USB, USB-C, NFC or Lightning device that works by physically interacting with a computer or mobile device. With support for modern authentication protocols, YubiKey is compatible with a wide range of operating systems and applications, making it an ideal solution for anyone looking to secure their online accounts.

Source: yubico.com

How does Yubikey work?

YubiKey works by generating a unique, one-time authentication code that is sent to a server to confirm the user’s identity. When the user wants to log in, they simply insert the YubiKey containing the unique code. With support for FIDO2 and U2F protocols, Yubico keys eliminate the risk of phishing and man-in-the-middle attacks.

It is waterproof, does not require batteries or additional software, which makes it very easy to use. Simply plug the key into a USB or USB-C port, touch it, and the system automatically recognizes the user, providing a fast and secure login.

Learn more about Yubico keys

Resistant hardware

does not need power, has no moving parts, is waterproof

Super easy to use

does not require remembering passwords, connects to various types of sockets, works when connected to a computer

Works with Identity Management platforms

Cisco Duo, Octa, CyberArk and many more technologies

What does it mean that YubiKey is phishing-resistant?

In 2023 alone, over 96,000 cases of phishing were reported to CERT Polska.

A password can be cracked and an authentication code can be intercepted. However, solutions referring to old, effective methods – physical system keys and biometrics – are appearing on the market. Based on FIDO (Fast Identity Online), a multi-step authentication method that involves verifying information between a device and a physical medium. Thanks to this, they are impossible to remotely intercept.

The answer to the threat of identity theft was supposed to be two-factor authentication (2FA). However, the second (and any subsequent) factor will not protect employees exposed to sophisticated social engineering and the interception of one-time passwords, magic links or SMS codes. This is where the FIDO protocol comes in handy.

Order Yubikey for your organization

Yubikey Types - Each One Phishing-Proof

Yubikey keys are useful where a high level of protection is necessary, but at the same time it is not possible to provide everyone with the appropriate means, such as a company phone. As a Yubico partner, we provide secure access and protection against phishing.

YubiKey can be used in any environment

In the protection of VIP users
Where employees do not have or cannot use phones, such as public offices, warehouses or production
In the case of shared stations
For users working remotely and needing a high level of protection
As access to key resources by external entities

For users, YubiKey is primarily

Faster login that does not require an additional device or remembering complicated passwords
PnP model that works after connecting to a computer
Simplicity of use, which makes the login process easy and user-friendly
No additional device, and the key itself is the size of a memory stick
Compatibility with over 1,000 applications, which allows you to secure almost all key resources

Security Key NFC

Security Key by Yubico is a simpler version of an authenticator key that focuses on supporting FIDO2 and U2F protocols. Each of these models is designed with different user needs in mind, offering different levels of security and functionality to meet the requirements of both individual users and large organizations.

Combines hardware authentication with public key cryptography, eliminating account takeovers on desktops, laptops, and mobile devices
Works out of the box with services like Google, Microsoft, Twitter, Facebook, password managers, and hundreds of other platforms
Supports FIDO2/WebAuthn and FIDO U2F protocols
Compatible keys with computers and mobile devices – touch or contactless authentication (USB or NFC)

Klucze YubiKey Security Key NFC
Source: yubico.com

YubiKey Bio

The YubiKey Bio – FIDO Edition series offers the convenience of biometric login with the added security, reliability and durability of Yubico.

YubiKey Bio Series – FIDO Edition

Offers the convenience of biometric login, enhanced with Yubico’s signature security, reliability, and durability.

Supports both biometric and PIN login
Meets stringent hardware security requirements – fingerprint template is stored in a secure element on the device
Supports FIDO protocols such as FIDO U2F and WebAuthn/FIDO2
Works across multiple operating systems and browsers, including Windows, macOS, Chrome OS, Linux, Chrome, and Edge
Available in USB-A and USB-C with biometric support
Based on the latest 5.7 firmware, the YubiKey Bio – FIDO Edition series has been enhanced with features dedicated to enterprise environments that make it easy to transition to a passwordless model

YubiKey Bio - model z czytnikiem linii papilarnych, który łączy bezpieczeństwo klucza fizycznego z uwierzytelnianiem biometrycznym
YubiKey Bio – a model with a fingerprint reader that combines the security of a physical key with biometric authentication. Source: yubico.com

YubiKey Bio Series – Multi Protocol Edition

Offers all the benefits of the FIDO line, with additional capabilities. Available exclusively as part of the YubiKey as a Service and included in the Compliance package or as an add-on to the Advanced package.

Supports both biometric and PIN logins
Supports FIDO and Smart Card/PIV protocols
Login to Microsoft Windows workstations using Smart Card/PIV and fingerprint
Browser authentication using FIDO2 and the same biometrics as system login
Ability to register to workstations using the HYPR application for centralized credential management
Works on a variety of operating systems and browsers, including Windows, macOS, Chrome OS, Linux, Chrome, and Edge
Available in USB-A and USB-C versions with biometric support

YubiKey 5/FIPS/CSPN

A multi-protocol security key that eliminates account takeovers with strong two-factor, multi-factor, and passwordless authentication, with convenient touch-to-sign authorization.

YubiKey 5

Support for multiple protocols ensures high levels of security in both modern and legacy IT environments. A wide range of formats allows you to secure your online accounts on all your favorite devices – desktop and mobile.

Supports protocols: FIDO2, U2F, Smart Card, OTP, OpenPGP 3
Available in versions: USB-A, USB-C, NFC, Lightning
Waterproof (IP68), crushproof, no batteries or moving parts

Seria kluczy YubiKey 5 do uwierzytelniania bez hasła

YubiKey 5 – the latest model offering support for FIDO2, U2F, PIV and OTP protocols; Source: yubico.com

YubiKey 5 FIPS

Choose from six different YubiKey models to fit your needs. The keychain model is designed to be carried with you wherever you go – you can attach it to your keys.

Highest level of authentication. Certified to FIPS 140-2 (general level 1 and 2, level 3 for physical security). Meets the highest level of authentication assurance – AAL3 – according to NIST SP800-63B guidelines.
Strong “one touch” authentication. No batteries or network connection required.
Reduces password incidents by 92% and significantly reduces IT support costs.

YubiKey 5 FIPS Key Series; Source: yubico.com

Yubico Partner will advise you on how to implement YubiKey in your organization

YubiKey is very easy to use. What is more complicated is finding a way to implement it in an organization at scale and make the most of the existing infrastructure.

That is why at Grandmetric we support you every step of the way – from analyzing your assets, designing the infrastructure for Yubico keys and implementing the solution across the organization. We know how to do it right.

Protect your organization with a NIS2-ready YubiKey

FIDO-based solutions can be particularly important for state institutions, critical sector companies and large organizations that are required to implement a Zero Trust policy in line with NIS2. Physical keys will reduce the risk of phishing attacks or other types of unauthorized access to a minimum.

YubiKey effectively protects users from identity theft and other threats on the network. This applies to personal devices, individual workstations, but above all, it is the missing link in the company's network security system.

In situations where there is a risk of losing a security key, appropriate procedures and technologies can prevent serious consequences for the organization. YubiKey can be useful in such cases, providing an additional layer of protection.

Cooperation with other technologies, such as Secfense User Access Security Broker, can facilitate the implementation of modern multi-factor authentication (MFA) for organizations. Modern MFA must become a security standard for all companies.

Authentication keys from an official Yubico partner

We design every element of corporate networks, so we know their weaknesses, the interdependencies between devices and software or individual suppliers.

Years of experience allow our engineers to select cooperation in such a way that they comprehensively cover the demand for cybersecurity services. Thanks to this, we can offer a wide range of products that will best meet customer requirements. As a partner of Yubico, but also of other manufacturers of security solutions, we have a wide range of excellent products to offer, which our team of technical consultants has tested and compared.

Yubico Keys are a great way to protect your identity. I use them personally and recommend them to my business as a Yubico partner as an extra layer of protection for organizations against cyberattacks.

Karol Goliszewski, Consulting Engineer, Grandmetric