The Future of Hardware-Backed Keys

Jerrod ChongVice President, Solutions Engineering

2

The YubiKey Invention

Secure login made simple

3

Alessio and His YubiKeyNo batteries or moving parts

4

One Device – Multiple Uses• Hardware design

Durable molding, gold contacts, capacitive touch sensorCommunicates over USB

• OTPOne touch login, driverless, clientless; self-registration;Supports multiple OTP protocols (Yubico OTP, OATH, Symantec VIP)

• Smartcard (PIV and OpenPGP)All-in-one reader and smartcard; new touch-to-sign

• FIDO U2FYubico is a co-creator of FIDO U2F authentication protocol

5

YubiKey 4OpenPGP PIV Config Set 1

Yubico OTPOATH-HOTPChallenge-ResponseStatic Credential

OATH-TOTP FIDO U2F

Config Set 2Yubico OTPOATH-HOTPChallenge-ResponseStatic Credential

6

Where to Use a YubiKeyWhere How

Docker code signing Smart card (PIV) + touch-to-sign

Gmail, Google for Work, GitHub, Dropbox 2 Step Verification U2F

LastPass 2nd factor authentication Yubico OTP, OATH-HOTP

SSH, email encryption, Windows login

Smart card (OpenPGP, PIV)

7

About Yubico •Founded in 2007•Team of 50 in Palo Alto, Seattle, London, Stockholm•Millions of users in 150 countries •Deployed by the Internet thought leaders and Fortune 100s

8

ResourcesYubico Libraries, Reference Code, Docs

Yubico PKCS#11

YubiKey for Enterprises

Yubico FIDO U2F

Yubico Demo Servers

developers.yubico.com

YKCS11

Yubico for Business

FIDO U2F

demo.yubico.com/u2f demo.yubico.com

9