As adoption of biometric logins continues to increase globally, enterprises and cybersecurity teams require stronger security combined with user convenience to improve user adoption of multi-factor authentication (MFA) and ensure productivity. Hardware security keys that leverage biometrics, like the YubiKey Bio Series, enable organisations to do so by offering portable, user-friendly seamless functionality – all while providing the highest level of authentication by facilitating passwordless login.
To address the evolving needs of our cloud-first customers requiring phishing-resistant security in a biometric form factor, in early 2024 we announced the initial availability of the YubiKey Bio Series – Multi-protocol Edition keys which support biometric authentication for FIDO and Smart Card/PIV protocols. Now, we’re excited to announce that the YubiKey Bio Series – Multi-protocol Edition keys are available globally today in two form factors: YubiKey C Bio – Multi-protocol Edition (USB-C) and YubiKey Bio – Multi-protocol Edition (USB-A). Keys are available exclusively via YubiKey as a Service, included with the Compliance tier or as an add-on in the Advanced tier (not available in Base tier as this is a FIDO-only offering).
YubiKey Bio Series – Multi-protocol Edition keys empowers users with phishing-resistant, passwordless MFA enhanced by biometric authentication via secure fingerprint and PIN-based passwordless login – creating a frictionless experience across devices and platforms, while reducing IT helpdesk costs. Users can expect increased speed, with less reliance on PINs using an intuitive biometric authentication flow.
Including the latest innovations and updates in the YubiKey 5.7 firmware, the YubiKey Bio Series – Multi-protocol Edition is enriched with new enterprise-centric capabilities which helps enterprises fast-track to passwordless. Key features and benefits include:
Enhanced and flexible Smart Card capabilities
Applicable for the YubiKey 5 Series, the PIV application on the YubiKey has received new supported key types (RSA-3072 and RSA-4096, Ed25519 and X25519) and now supports advanced key management functions, such as move and delete PIV keys.
Available through custom configuration, the new Enterprise Attestation capability allows identity providers to assure that only authenticators approved by the organisation are being used and the availability of serial numbers further enables asset tracking.
This capability, when enabled, will apply to all YubiKey applications that rely on PINs, including FIDO2 and Smart Card/PIV. Organisations can rely on the fact that users are not using simple, common, or easy to guess PIN’s. This capability further enables organisations to comply with internal and external compliance requirements.
Assure that a temporary FIDO2 PIN set by, for example – an administrator during enrollment – is forced to be changed by the end user upon first use. In addition, organisations can configure a minimum PIN length on the YubiKey to meet corporate and regulatory compliance mandates.
While current YubiKeys offer a sufficient number of FIDO2 credentials (also known as passkeys) to meet most enterprise user needs, there has been expansion of the storage for up to 100 passkeys and 24 PIV certificates.
As Yubico’s featured partner, HYPR currently provides the most seamless user experience – together, Yubico and HYPR allow organisations to easily go fully passwordless by adding support for additional use cases like desktop logins, as well as solve more authentication needs through support of phishing-resistant solutions. The YubiKey Bio Series – Multi-protocol Edition keys are also compatible with other technology partners and applications.
For more information on the new YubiKey Bio Series – Multi-protocol Edition, visit here.