Multi-factor authentication (MFA) plays a key part in keeping cyber criminals out of your accounts and devices.
And whilst MFA apps are convenient and easy to use, we understand that sometimes, you don’t want to add an authenticator app to a personal device.
So, let’s explore a solution: Yubikeys.
What is a Yubikey?
A Yubikey is a small device, like a keyring or USB stick, that provides an additional authentication method. They are considered a phishless MFA method, and more secure than an authenticator app.
How do Yubikeys work?
When you go to login to an account you must enter your username and password. You will then be prompted for MFA using a security key. You must plug the Yubikey into the device, or tap it against the device if it is NFC enabled.
You then enter your Yubikey pin, and touch the Yubikey. This is to physically prove that you are a present human using the device.
Some sign-ins, such as Windows, don’t require you to enter your password when logging in. You can simply enter your username and proceed with your Yubikey.
The Yubikey adds an extra layer of security by checking if the site you are logging in to is legitimate. If the site does not match, it will not grant access, preventing an attacker from further access to your account.
Why Use a Yubikey?
There are several advantages to using a Yubikey:
- Unlike MFA apps or SMS verification codes, Yubikeys cannot be tricked by fake login pages.
- You do not need to charge a Yubikey or connect it to a network to use it.
- They are compatible across different software and platforms, including Windows, Android, iOS and more.
- You can purchase various models to suit your device, including USB-A, USB-C, Lightning and NFC.
What Happens if my Yubikey is Stolen?
Of course, there is potential that a Yubikey can be lost or stolen. However, if this does happen, your account is likely still safe. If someone else has your Yubikey, they would also need your username, password, and the device registered with the login.
In Summary…
A Yubikey is a phishless MFA method, perfect for those who do not want to use an authenticator app, or as a more secure alternative. They are compatible with a range of devices and software, allowing you to improve the security on your accounts quickly and easily.
