Yubico

Department of Defense Contractors Replacing Legacy Two-factor Authentication with YubiKey

Press Release  •  Nov 09, 2011 11:02 GMT

PALO ALTO, Calif. and STOCKHOLM, Nov. 09, 2011 – Yubico, the leading provider of simple, open online identity protection, today announced a rapid increase of YubiKey orders from U.S. Department of Defense (DOD) contractors to replace legacy two-factor authentication tokens. The growing business within the defense sector validates the unique, high security processes provided by Yubico.

Leveraging technology designed for all vertical industries, including energy, technology, and government, the YubiKey serves as the key part of two-factor authentication solutions for U.S. defense organizations searching for simple and secure access to networks and cloud applications.

“Reinforcing our commitment to providing the most easy-to-use and dependable authentication products, Yubico technology, security processes and technical transparency are gaining acceptance by organizations with the highest security requirements,” said Stina Ehrensvard, CEO and founder of Yubico.

Earlier this year, a database with millions of RSA SecurID customer secrets was hacked in a major security breach. This breach raised concerns about the security processes for one time password (OTP) tokens. As a result of the incident, Yubico was contacted by DOD contractors performing audits for hardware OTP tokens as a vendor not affected by the breach.

The DOD contractors required that no copies of token secrets were stored at manufacturing facilities, or at any third party that could potentially break the security, as it apparently happened at the RSA breach. The tokens needed the ability to be easily programmed at their own facilities and the server software required technical transparency, ensuring there was no hidden weakness. The YubiKey was the only authentication product that met these requirements.

Manufactured by robots in Sweden, the YubiKey USB authentication key simplifies the process of logging in with an OTP token, eliminating the need to re-type long pass codes from a display device. The YubiKey is practically indestructible and fits easily on a keychain.  It works on all computers and platforms without the need for installing client software.

The RSA breach also highlighted the need to secure servers, including the secrets used to generate one time passwords, from remote attack. In addition to the YubiKey, Yubico reports an increase of orders for the YubiHSM, Yubico’s newly launched and the market’s most cost-efficient Hardware Security Module for protecting secrets on servers.

Please visit yubico.com/YubiKey and yubico.com/yubiHSM for more information.

About Yubico
Yubico is the leading provider of simple, open online identity protection. The company’s flagship product, the YubiKey, uniquely combines driverless USB hardware with open source software. More than a million users in 95 countries rely on the YubiKey two-factor authentication, enabling instant and secure access to computers, networks and cloud applications. Customers range from individual Internet users to e-governments and Fortune 500 companies. Founded in 2007, Yubico is privately held with offices in California, Sweden and UK. For more information, please visit yubico.com.

You haven't completed the steps for your Hosted Newsroom

You haven't entered a correct link to your helper.html file for your Hosted Newsroom. Go to Publish and complete the steps.