The Security Key FIPS Series is a hardware-based authentication solution that provides superior defence against phishing, eliminates account takeovers, and enables compliance requirements for strong authentication. This series of security keys are FIPS 140-2 validated (Overall Level 2, Physical Security Level 3) and meet the highest authenticator assurance level 3 (AAL3) of NIST SP800-63B guidance.
Strong Authentication
The Security Key offers superior security by combining hardware-based authentication and public key cryptography to effectively defend against phishing attacks and eliminate account takeovers. It offers multi-protocol support including FIDO2, OTP, OATH HOTP, U2F, PIV, and Open PGP. Users have the broadest options for strong authentication including not only two-factor authentication but also support for single factor passwordless login and multi-factor authentication in conjunction with user touch and PIN.
Easy, Fast and Reliable
The Security Key provides a simple and intuitive authentication experience that users find easy to use, ensuring rapid adoption and organizational security. With authentication speeds up to 4X faster than OTP or SMS based authentication, the Security Key does not require a battery or network connectivity, making authentication always accessible.
Reduce IT Operational Costs
The ease of use and reliability of the Security Key is proven to reduce password support incidents by 92%. This was documented in a research paper by Google, describing the Google employee rollout to more than 70 countries. Deployments are faster and cost less with the Security Key’s industry-leading support for numerous protocols, systems and services.
Modern Authentication from the Industry Leader
The Security Key is the trusted secure authentication choice for the largest technology, finance, and retail companies in the world. This includes 9 of the top 10 technology companies, 4 of the top 10 US banks, and 2 of the top 3 global retailers. Companies including Google, Facebook, Salesforce and thousands more trust the Security Key to protect account access to computers, networks and online services.
Specifications
What’s in the box?
USB Type
NFC-Enabled
Application Methods
- Strong Two Factor, Strong Multi-Factor
Productivity & Communication
- Google Account, Microsoft account, Salesforce.com
Identity & Access Management
- AWS Identity and Access Management (IAM), Centrify, Duo Security, Google Cloud Identity, Microsoft Active Directory, Microsoft Azure AD, Okta, Ping Identity
Password Managers
- 1Password, Dashlane Premium, Keeper®, LastPass Premium
Design & Durability
- Water Resistant, Crush Resistant, No Batteries Required, No Moving Parts
Function
- WebAuthn, CTAP1, Universal 2nd Factor (U2F), Smart card (PIV-compatible), OTP, OATH – HOTP (Event), OATH – TOTP (Time), Open PGP, Secure Static Password
Certifications
- FIDO 140-2 Certified, FIDO Universal 2nd Factor (U2F) Certified
Cryptographic Specifications
- RSA 2048, RSA 4096 (PGP), ECC p256, ECC p384
Device Type
- FIDO HID Device, CCID Smart Card, HID Keyboard
Manufacturing
- Made in the USA and Sweden
Frequently Asked Questions
Do I need the FIPS key to secure my organisation?
- FIPS stands for Federal Information Processing Standard. The FIPS key is primarily used for companies working in or with regulated industries, usually federal or government agencies. If you do not work in a federal or government space that requires the FIPS 140-2 certification then it is not necessary for your organization. FIPS is a security certification that meets strict security standards.
I have an iPhone, which key should I buy?
- If you would like to enhance security for your mobile app on your device, the first step is to check the model of your iPhone. For iPhone 7 and newer models, you can use the Security Key 5 NFC or the Security Key 5C NFC, for secure tap and go strong authentication. For iPhone versions 6S or older, or for any iPad you may have, you can use the Security Key 5Ci with USB-C and Lightning support to secure mobile apps on iOS. Please note that the Security Key 5Ci has not been tested to work with the iPad Pro (3rd Generation).
What if I lose my Security Key?
- For best practice, we recommend having a primary Security Key and purchasing a backup key just in case one is lost or stolen. A backup key is an additional key that is paired to each individual service to prevent losing access to your existing accounts. It is also recommended to keep your backup key in a safe place such as a safe at home.
What is the difference between all of the keys?
- The Security Key 5 Series includes support for the same protocols as the 4 Series with the addition of the FIDO2 protocol. Besides FIDO2, they include FIDO U2F, smart card (PIV), OTP, OpenPGP, OATH-TOTP, OATH-HOTP, and Challenge-Response. The Security Key Series only has the FIDO2 and U2F protocols.
What browsers are compatible with the Security Key?
- It depends on what protocol the service requires. For OTP (one-time-password) all major browsers are compatible, including Safari. FIDO U2F (Universal 2nd Factor) support is dependent on the browser and how the service implemented the integration. Google Chrome will work out of the box, while Mozilla Firefox will need to be manually enabled to support U2F if supported by the service. Other major browsers have not yet made support for U2F protocol. It’s recommended to consult with the service’s documentation for a broader understanding of what’s specifically supported.