FIDO U2F Security Key
|Price:||£17.50 & FREE UK Delivery on orders dispatched by Amazon over £20. Delivery Details|
Fulfilment by Amazon (FBA) is a service Amazon offers sellers that lets them store their products in Amazon's warehouses, and Amazon directly does the picking, packing, shipping and customer service on these items. Something Amazon hopes you'll especially enjoy: FBA items are eligible for and for Amazon Prime just as if they were Amazon items.
If you're a seller, you can increase your sales significantly by using Fulfilment by Amazon. We invite you to learn more about this programme .
- Choose from over 13,000 locations across the UK
- Prime members get unlimited deliveries at no additional cost
- Find your preferred location and add it to your address book
- Dispatch to this address when you check out
- FIDO U2F Security Key offers strong authentication with a simple touch of a button
- Works instantly with no need to re-type passcodes -- replacing SMS texts and authenticator apps
- No client software or drivers need to be installed, no batteries, no moving parts
- Crush- and water-resistant, FIDO U2F Security Key is practically indestructible during normal use, weighs only 3g, and attaches to your keychain alongside your house and car keys
- Manufactured in USA and Sweden with high security and quality
Frequently bought together
Customers who bought this item also bought
FIDO U2F Security Key by Yubico is a USB device supporting the emerging FIDO U2F protocol. With a simple touch, the Security Key protects access to online services for everyone from individual consumers to the world's largest organizations. FIDO U2F Security Key works on Microsoft Windows, Mac OS X, and Linux operating systems, and on major browsers.
WHERE CAN YOU USE YOUR YUBIKEY?
Use the FIDO U2F Security Key by Yubico with any services that support the emerging FIDO Universal 2nd Factor (U2F) protocol. Log in to your Facebook, Gmail, Google, GitHub, or Dropbox accounts using the Security Key.
WHAT CAN YOUR YUBIKEY DO?
One single FIDO U2F Security Key by Yubico supports an unlimited number of U2F credentials -- so you can store all of the credentials needed to secure your accounts, on one device. Hardware secure elements guard your keys.
Yubico changes the game for strong authentication, providing superior security with unmatched ease-of-use. Find out more at yubi.co.
What do customers buy after viewing this item?
Top customer reviews
Strong passwords are the first step, as well as keeping different passwords for different accounts, however if you wish to take your internet security to the next level, you should consider 2-factor authentication.
You may have used 2-factor authentication in other forms: receiving a one-time passcode to your mobile phone perhaps, or maybe using a digital secure key/code generator when logging in to your banking -- this is the same thing, in another form: as well as signing in with your standard username and password, you also enter this in the USB drive to confirm your identity.
Get this and even if your username & password fall in to the wrong hands, your account won't
I use it for my google account (which I use for everything, including email). It works perfectly but so far I have found that it is only compatible when used in the Chrome browser. There are fallbacks you can use (e.g. single use code to mobile) if using other browsers or non-USB devices.
*** Supported by: Gmail, YouTube, Github, Bitbucket, Dropbox and more!
You can't go wrong, stick the stick in a usb port and go through the simple steps to at a security key to your account via the 2-step method and you are good to go.
I have tested it out on a few machines that we foreign to me and the key works flawlessly. I may pass this key on to a member of my family at some point and pony up for the Neo as it has greater functionality and NFC.
If you only need U2F authentication then this blue U2F one is all you need, no complexity there (compared to the YubiKey4, however for extra using 2FA hardware devices on other features such as windows login and more, YubiKey 4 is useful, but I think it is overpriced, hence this U2F is a better buy).
However, you will need to store it in a safe place or keep it on you at all times otherwise, it is physically not as safe as a mobile phone with TOTP authenticators (FreeOTP for example) as they are locked by PIN's/Patterns or otherwise.
However, keep in mind U2F still relies on a password (and perhaps question challenge) precursor on the service you use so you have that weak link and to remember that (you can generate those using KeePass2 or something, which is a great app).
UAF is if you really want to be really password-less by using a signature of you're biometrics (usually fingerprint).
Keep in mind, only Chrome supports it and Firefox (currently via an add-on until Q4 2017, release 57, according to their roadmap) and Microsoft has not got it planned (according to their roadmap, however Windows 10 will support it if it does not already, not sure about them back porting that to Windows 7 though ).
You will need to (as a customer to their customer support) get your services to support FIDO U2F/UAF, and I strongly recommend you do so, especially critical services such as finance or anything you pay for / rely on heavily for privacy.
1) Keep it on a lanyard, a good one and keep it in a safe place (physical access security and something you have) as if they still get your password and question challenge, all they have to do is push a button and they're in (if they have physical access to your key).
These lanyards are cool ( Original Lanyards Leis Label with Key Ring multi-coloured black / yellow )
2) Side-channel attacks, there has been some research and testing on their older keys, hopefully power analysis and differential fault injection is mitigated from that feedback
You can find a PDF of the paper online along with Yubico's response (circa 2014)
3) USB electrical contacts are exposed, would be better if it came with a cover, but you can improvise here if you want that.
4) No OLED screen to CONFIRM the website you are authenticating on, this prevents compromised (perhaps public) machine usage.
Ideally you want to confirm the website on the 2FA device screen before you authenticate with the device button. Currently you have to trust the machine you are using it on.
Think of this as a better mobile TOTP 2FA (but with the same risks of physical access)
I would recommend upgrading to UAF once services start supporting it (but keep I mind, biometrics usage - usually fingerprint).
Also in this era of quantum computation, usually the encryption algorithms we use today are NOT quantum safe (ECC, DH and RSA are not quantum safe - read up on Shors and Groves algorithms). Lattice, code-based and Multivariate polynomial methods are more quantum safe (for now).
Much better than no 2FA, improvement over Mobile TOTP 2FA (which is the VERY VERY least you want now days).
I wish Amazon support FIDO U2F/UAF (I recommend using FreeOTP for TOTP they currently only support, it is open source and free on mobile) and many other services (this is where you come in, everybody contact support and ask your services to support more 2FA).
I had a go at setting up Windows Hello within Windows 10 Anniversary build so I could login to my Laptop and PC using this key but after downloading the Yubikey app from the Windows Store I realised that this key is not supported for this purpose. No big deal as I didn't purchase it for this.
Both of these links are handy in case you want to compare the different protocols and supported features of the Yubico keys.
So don't expect to use this without your regular password, as many people seems to be confused about this...
What this device does, is to offer users an ALTERNATIVE way of authenticating online accounts and devices with a hardware based encryption key. However, unless disabled, the original SMS and Google Authenticator with remain functional. Since in theory there's only ONE copy of this key in existence, losing it will mean you'll need to replace and update all accounts you've used this key with - make sense?
On laptops and mobile devices (with additional software) you can use this YubiKey as a login key for Windows/Mac/Linux laptops, be-warned that this only works as an alternative means of logging in.. If you have a weak password, anyone stealing our machine can still get in.
For me, it makes for a great backup device. For those instances where you might lose your mobile phone or access to Google Authenticator.
Would you like to see more reviews about this item?
Most recent customer reviews
F2A is simple to use, and supports a wide range of websites.