CA-YUBICO
Today Yubico (NASDAQ: YUBICO), the leading provider of hardware authentication security keys, announced the upcoming release of YubiKey 5.7 firmware for the YubiKey 5 Series, Security Key Series and Security Key Series - Enterprise Edition. With a focus on enterprise needs, these updates reinforce Yubico’s commitment to providing secure, simple, and scalable authentication solutions. Security keys with firmware 5.7 will be available to purchase in late May 2024, offering enhanced features such as improved PIN complexity, enterprise attestation, and expanded passkey credentials storage. These updates empower organizations to adopt passwordless-first, modern authentication, fostering phishing-resistant users worldwide.
As part of Yubico’s goal of helping enterprises raise the bar for security with greater flexibility, the company also announced the availability of Yubico Authenticator 7 which will support the upcoming YubiKey 5.7 features.
“Organizations are continuing to face a surge in the variety and complexity of cyber threats at historical rates, often fueled by compromised employee login credentials, frequently resulting from attacks such as phishing. This trend is exacerbated by the rise in use of Artificial Intelligence (AI),” said Jeff Wallace, senior vice president of product at Yubico. “We’re excited to continue offering best-in-class solutions that protect organizations and accelerate their transition to passwordless with the latest enterprise-focused updates to the YubiKey. We’re confident that organizations are now better equipped than ever to enforce compliance requirements and elevate their security posture throughout their organization.”
YubiKey 5.7: Accelerating enterprises to passwordless
To help organizations tackle this challenge, Yubico’s key updates and enhancements to the YubiKey 5 Series and Security Key Series* include:
-
Enhanced PIN complexity across all YubiKey applications
- Block simple patterns and common PINs at the hardware level to enable compliance with upcoming NIST requirements and corporate mandates. This includes FIDO2, PIV, and OpenPGP.
-
Enterprise attestation
- Allow organizations to enforce the usage of YubiKeys that they purchased via custom programmed keys with enterprise attestation. Working in conjunction with identity providers, this capability can also facilitate the retrieval of unique identifiers during FIDO2 registration to streamline asset tracking and account recovery.
-
FIDO2 enhancements
- Empower organizations to enforce compliance requirements and elevate security measures surrounding PIN usage. YubiKey 5.7 implements FIDO Client-to-Authenticator Protocol (CTAP) 2.1, embracing the latest FIDO2 protocol features such as Force PIN Change and Minimum PIN Length.
-
Expanded passkey and passwordless storage
- Provide ample storage space to meet authentication needs while maintaining strong security standards. More storage for FIDO2 discoverable credentials (passkeys) and OATH one-time passwords will now accommodate up to 100 passkeys, 24 PIV certificates, 64 OATH seeds, and 2 OTP seeds at once for a total of 190 credentials.
-
Expansion and enhancement of public key algorithms for PIV applications
- Align with DoD memo requirements and offer advanced key management functions, enhancing flexibility for organizations through support of larger RSA keys (RSA-3072 and RSA-4096), as well as Ed25519 and X25519 key types.
-
Migration to Yubico’s own cryptographic library
- Yubico has developed a library in-house that performs the underlying cryptographic operations (decryption, signing, etc.) for RSA and ECC.
“The new features within 5.7 allow enterprises to streamline critical processes such as asset tracking and account recovery, while also enhancing flexibility,” said Wallace. “These updates empower enterprises with the latest authentication advancements and tools to build specific strategies for creating phishing-resistant users and mitigating phishing threats for employees, external identities, and customers.”
Capabilities in the new 5.7 YubiKeys also align with recent U.S. Government memo requirements on adopting phishing-resistant MFA and offer advanced key management functions. Compliance with upcoming NIST requirements and corporate mandates is also supported by enforcing the blocking of simple patterns and common PINs at the hardware level.
*Note: Smart Card/PIV capabilities, OATH and OTP credentials are not available on any Security Key Series thus these updates are not applicable. Enterprise attestation is available on the YubiKey 5 Series and Security Key Series - Enterprise Edition. See here for more details.
Yubico Authenticator 7: Hardware-backed authenticator app across desktop and mobile
Aligned with the 5.7 firmware release, significant updates within Yubico Authenticator 7 launched today in support of managing these new features. This new version enables use of the new public key algorithms for PIV, bringing more advanced management options and streamlines the interface for a better user experience when handling many credentials. Additionally, it adds localization with official support for French and Japanese, with additional community-provided translations. The app is now available for all major desktop platforms, as well as for Android. Enhanced features for iOS will be coming in the next version of the iOS application. It's the perfect companion to the new YubiKey 5.7, with its expanded credential storage.
The Yubico Authenticator delivers strong security by enabling users to store credentials on a YubiKey instead of a mobile phone, thereby significantly removing risks posed by remote attackers targeting software-based authenticator apps. By incorporating hardware-backed strong two-factor authentication in the YubiKey, credentials stays safe and the bar for security is raised while delivering the convenience of an authenticator app.
For more information on today’s innovation announcements from Yubico, visit here. To get the Yubico Authenticator 7 app, visit here.
About Yubico
Yubico (Nasdaq First North Growth Market Stockholm: YUBICO), the inventor of the YubiKey, offers the gold standard for phishing-resistant multi-factor authentication (MFA), stopping account takeovers in their tracks and making secure login easy and available for everyone. Since the company was founded in 2007, it has been a leader in setting global standards for secure access to computers, mobile devices, servers, browsers, and internet accounts. Yubico is a creator and core contributor to the FIDO2, WebAuthn, and FIDO Universal 2nd Factor (U2F) open authentication standards, and is a pioneer in delivering modern, hardware-based passkey authentication security at scale to customers in over 160 countries.
Yubico’s solutions enable passwordless logins using the most secure form of passkey technology. YubiKeys work out-of-the-box across hundreds of consumer and enterprise applications and services, delivering strong security with a fast and easy experience.
As part of its mission to make the internet more secure for everyone, Yubico donates YubiKeys to organizations helping at-risk individuals through the philanthropic initiative, Secure it Forward. The company is headquartered in Stockholm and Santa Clara, CA. For more information on Yubico, visit us at www.yubico.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240506185894/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Access Advance Welcomes Global Technology Leaders as Licensees and Licensors to New Video Distribution Patent Pool2.7.2025 02:00:00 CEST | Press release
Access Advance LLC ("Advance") today announced the inaugural roster of licensees and licensors for its Video Distribution Patent ("VDP") Pool, marking a significant milestone in the program's rapid market adoption since its January announcement. The participation of major global companies heavily involved in video codec technology demonstrates strong industry support for the comprehensive licensing solution covering HEVC, VVC, VP9, and AV1 codecs. The VDP Pool has successfully attracted a group of licensees/licensors including ByteDance, Kuaishou, NTT Docomo, and Tencent. This represents the beginning of what Access Advance expects to be widespread adoption among content streaming providers seeking simplified codec licensing. The licensees’ participation provides immediate access to the wide-ranging patent portfolio while benefiting from the fixed tiered pricing structure designed to scale with business size. "We're pleased to welcome ByteDance, Kuaishou, NTT Docomo and Tencent as our
Intralot S.A. to Acquire Bally’s International Interactive Business in a Transaction that Creates a Global Gaming Technology and Services Company in Lottery and Digital Online Gaming Markets1.7.2025 21:10:00 CEST | Press release
Intralot S.A. to Remain Listed on the Athens Stock ExchangeTransaction Enterprise Value of €2.7 Billion Intralot S.A. (ATSE: INLOT) (“Intralot”) and Bally’s Corporation (NYSE: BALY) (“Bally’s”) today announced that their respective Boards of Directors approved their entry into a definitive transaction agreement (“Transaction Agreement”) pursuant to which Intralot will acquire Bally’s International Interactive business (the “International Interactive Business”) in a cash-and-shares transaction that values the International Interactive Business at an enterprise value of €2.7 billion (the “Transaction”). The consideration for the acquisition of the International Interactive Business will comprise a combination of cash paid by Intralot and newly issued shares delivered by Intralot to Bally’s, as more specifically detailed below. As part of the Transaction, Intralot expects to refinance part of its existing debt facilities and Bally’s also expects to repay secured debt from the cash proceed
Valeo Foods Group Acquires Melegatti Cakes Expanding the Italian Bakery Portfolio1.7.2025 18:21:00 CEST | Press release
Valeo Foods Group, one of Europe’s leading producers of quality sweets, treats and snacks, has successfully acquired the assets of an Italian panettone, pandoro and croissant producer, Melegatti 1894 S.p.A.This acquisition is another step forward in Valeo Foods Groups’ strategy to expand its baked sweet treats portfolio, and reinforces Valeo’s commitment to bringing authentic Italian confections and established regional brands to a wider international audience. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250702677156/en/ Melegatti Founded in 1894 in Verona, Melegatti has a strong reputation for artisanal cakes - particularly pandoro, panettone and filled croissants - traditional recipes, and a rich Italian heritage, Melegatti has a proud legacy founded on family values, craftsmanship, and a passion for quality. “We are excited to welcome Melegatti into the Valeo Foods Group,” said Ronald Kers, Group CEO. “This acquisition
PUMA and Borussia Dortmund Extend Partnership1.7.2025 18:18:00 CEST | Press release
Sports company PUMA has extended its long-standing partnership with Borussia Dortmund, and will continue to create products that cater to BVB’s many passionate fans around the world and match the club’s dynamic, fast paced style of football. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250701775493/en/ Sports company PUMA has extended its long-standing partnership with Borussia Dortmund, and will continue to create products that cater to BVB’s many passionate fans around the world and match the club’s dynamic, fast paced style of football. Since the start of their partnership in the 2012/13 season, BVB has celebrated many successes, such as reaching the finals of the 2012/13 and 2023/24 UEFA Champions League and winning the 2016/17 and 2020/21 German DFB Cup. The club is currently participating in the FIFA Club World Cup, where it has already reached the round of 16. BVB continues to set the standard in European football w
Gogo Galileo HDX Coming to Cessna Citation Jet Models1.7.2025 17:00:00 CEST | Press release
Expected FAA Supplemental Type Certification in late 2025 Textron Aviation Inc., a Textron Inc. (NYSE: TXT) company, today announced Gogo Galileo HDX will be available for aftermarket installation on Cessna Citation jets after Federal Aviation Administration (FAA) Supplemental Type Certification (STC) expected in late 2025. The global Low Earth Orbit (LEO) solution allows customers to enjoy one of the best possible in-flight connectivity and aviation experiences, no matter where their journey takes them. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250701750049/en/ Textron Aviation Inc., a Textron Inc. (NYSE: TXT) company, today announced Gogo Galileo HDX will be available for aftermarket installation on Cessna Citation jets after Federal Aviation Administration (FAA) Supplemental Type Certification (STC) expected in late 2025. (Photo: Textron Aviation) By offering Gogo Galileo HDX as an aftermarket upgrade, the Textron Av
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom