Yubico has announced the release of its YubiKey Bio Series – Multi-protocol Edition keys, expanding phishing-resistant authentication options for enterprises. The new biometric security keys, which build upon the company’s original YubiKey Bio launch in 2021, are available in both USB-C and USB-A form factors.
The new YubiKey Bio Series features biometric authentication capabilities, offering secure fingerprint and PIN-based passwordless login functionality. This enhancement aims to reduce IT helpdesk costs while increasing user adoption of multi-factor authentication (MFA). The integration of biometric capabilities represents a significant evolution from traditional security keys, addressing the growing demand for more sophisticated enterprise security solutions.
Notable improvements include enhanced smart card capabilities, with the YubiKey 5 Series now supporting additional key types such as RSA-3072, RSA-4096, Ed25519, and X25519, along with advanced key management functions. The keys also introduce Enterprise Attestation, allowing organizations to verify that only approved authenticators are being used within their systems, a feature particularly relevant as organizations face increasing security compliance requirements.
Security features have been strengthened with enhanced PIN complexity requirements, enabling organizations to enforce more robust PIN policies across FIDO2 and Smart Card/PIV applications. The keys also offer flexible PIN management capabilities, allowing administrators to set minimum PIN lengths and require users to change temporary FIDO2 PINs during enrollment.
Storage capacity has been expanded, with support for up to 100 passkeys and 24 PIV certificates per device. The keys maintain compatibility with various technology partners, including HYPR, facilitating seamless integration for passwordless authentication implementations. This expanded storage capacity addresses the growing need for managing multiple digital identities in enterprise environments.
The YubiKey Bio Series utilizes FIDO Alliance standards and incorporates unique cryptographic keys for each device. When connected via USB or NFC, the keys authenticate user identity through various supported protocols, including passkeys, one-time passwords, and Universal 2nd Factor (U2F). This multi-protocol support ensures broad compatibility with existing security infrastructure while supporting the transition to newer authentication standards.
These security keys are designed to be resistant to physical tampering, water damage, and crushing, while maintaining a user-friendly interface that requires minimal interaction for authentication. The devices can detect website legitimacy to prevent authentication on spoofed sites, and support both USB-C and NFC connections for broad device compatibility, making them particularly suitable for organizations implementing hybrid work policies.
Source: Yubico Blog
Follow Us