Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Identity & Access

New YubiKey 5C NFC Security Key Brings NFC, USB-C Connections

YubiKey 5C NFC

Yubico on Wednesday announced the release of YubiKey 5C NFC, the latest YubiKey 5 series security key, which allows users to authenticate through either near-field communication (NFC) or USB-C.

YubiKey 5C NFC

Yubico on Wednesday announced the release of YubiKey 5C NFC, the latest YubiKey 5 series security key, which allows users to authenticate through either near-field communication (NFC) or USB-C.

Yubico has been offering hardware-based authentication solutions with both NFC and USB-C, but this is the first device that combines both — the company says this is one of its “most sought-after security keys.”

The YubiKey 5C NFC can be used to authenticate on many email, IAM, VPN, social media, collaboration, and password management services accessed through smartphones, laptops and desktop computers running Windows, macOS, Linux, Android or iOS.

The list of supported authentication protocols includes FIDO2 (WebAuthn), FIDO U2F, PIV, OATH-HOTP and OATH-TOTP, OpenPGP, YubiOTP, and challenge-response.

The YubiKey 5C NFC, sold for $55, is protected against physical damage by a fiberglass-reinforced body and military-grade hardened gold. It’s also advertised as water- and crush-resistant.

Yubico says the new security key is also ideal for enterprises, which can use its YubiEnterprise services for fast and cost-effective procurement and delivery of the devices.

“Users are no longer tied to just one device or service, nor do they want to be,” said Guido Appenzeller, chief product officer at Yubico. “That’s why the YubiKey 5C NFC is one of our most sought-after security keys — it’s compatible with a majority of modern-day computers and mobile phones and works well across a range of legacy and modern applications. At the end of the day, our customers crave security that ‘just works’ no matter what.”

Security keys are considered a highly secure and efficient authentication solution but, just like any other product, they can also have vulnerabilities.

Yubico last year replaced YubiKey FIPS security keys following the discovery of a cryptography-related issue that could cause RSA keys and ECDSA signatures generated on the device to have reduced strength.

Google also offered a free replacement for its Titan dongles last year due to a potentially serious vulnerability that exposed the devices to Bluetooth attacks.

Related: Yubico Replacing YubiKey FIPS Devices Due to Security Issue

Related: New YubiKey 5Ci Has Both USB-C and Lightning Connectors

Related: Google’s Titan Security Keys Vulnerable to Bluetooth Attacks

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Expert Insights

Related Content

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Identity & Access

Strata Identity has raised $26 million in a Series B funding round led by Telstra Ventures, with additional investment from Forgepoint Capital, Innovating Capital,...

Application Security

Software maker Adobe on Tuesday released security patches for 29 documented vulnerabilities across multiple enterprise-facing products and warned that hackers could exploit these bugs...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Application Security

Computer maker Lenovo has started pushing security patches to address three vulnerabilities impacting the UEFI firmware of more than 110 laptop models.