The best hardware security keys for two-factor authentication

The best hardware security keys for two-factor authentication

gWhen it comes to protecting your data, SMS-based or app-based two-factor authentication using your smartphone is more secure than depending only on passwords. But it can also be time-consuming to set up and use. Hardware-based security keys provide a fast, no-fuss way to use two-factor authentication without having to mess around with your phone. They are based on the FIDO U2F standard, a security protocol that is difficult to intercept ; it was developed by Google and security company Yubico, and is now administered by the FIDO Alliance. While Yubico helped develop the standard, it is not the only company that produces security keys, so it’s wise to shop around. A lot of what makes buying a security key tricky is first figuring out which device(s) you plan to use it with. Yubico offers different keys for devices with USB-A, USB-C, or NFC connections, while Google offers one that uses Bluetooth. You should also check out whether your apps support the U2F standard. (Yubico has a list of apps that work with its key; since most keys use the same standard, they should also work with those services.) Unfortunately, while you can use a key to authenticate a macOS system, there is not yet a key that will get you into Windows — unless you’re fond of the Edge browser. The new FIDO2 standard , which was built to enable password-free authentication, can use Windows Hello together with Microsoft’s Edge browser to authenticate Windows, if the key supports it. Otherwise, it’s best to go with a security key that is simple to set up, convenient to carry, and will keep your various apps safe and secure. Yubico’s YubiKey 5 NFC — which uses both a USB-A connector and wireless NFC — is the best key for logging into your online accounts, services, macOS computers, Android devices, and the iPhone 7 and up. I’ve never had any issues using it in a USB-A port, or with a mobile device using the NFC feature. The YubiKey 5 NFC supports a plethora of security standards, including OTP, Smart Card, OpenPGP, FIDO U2F, and FIDO2. The key itself is “made in the USA and Sweden,” and comes packaged in a simple cardboard and plastic container. It has a single, easily identifiable gold disk for you to press when you want to confirm your sign-in and includes a keyhole ring to use with a keychain so you don’t lose your valuable security key. It’s also incredibly durable, waterproof, and crush resistant. I’ve been carrying this key around in my pocket, attached to a keychain, and bouncing around inside my backpack, and it hasn’t had any noticeable damage. Yubcio sells the individual YubiKey 5 NFC keys for $45, as part of a two-pack for $90, a 10-pack for $432, or a whole set of 50 for $2,160, if you need that many security keys for a team. It’s proven itself to work for logging into my social media and email accounts time and time again. […]

Full article on original web page… www.theverge.com

Tags:

Leave a Reply