Android Authority

Gmail login without a password? Google to offer NFC-enabled tokens next year

Let’s face it, using passwords to authenticate into a system is a broken mess. To be effective, passwords need to be unique, long, complex, and frequently changed, which may be acceptable in a tightly ...
Ars Technica

YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel

The YubiKey 5, the most widely used hardware token for two-factor authentication based on the FIDO standard, contains a cryptographic flaw that makes the finger-size device vulnerable to cloning when ...
The Verge

YubiKeys have an unfixable security flaw — but it’s difficult to exploit

Posts from this topic will be added to your daily email digest and your homepage feed. The vulnerability impacts almost all older YubiKey security tokens. The vulnerability impacts almost all older ...
Wired

The New YubiKey Will Help Kill the Password

On Monday, the hardware authentication company Yubico is announcing a new generation of its physical YubiKey tokens that support password-less login. The Series 5 YubiKeys get this streamlined mojo ...