PALO ALTO, Calif. & STOCKHOLM – June 25, 2018 –(BUSINESS WIRE)–Yubico, the leading provider of hardware authentication security keys, today announced the certification and availability of the YubiKey FIPS Series, a new product line that meets the stringent cryptographic security requirements of the Federal Information Processing Standard (FIPS) 140-2. FIPS 140-2 is a US government computer security standard, published by the National Institute of Standards and Technology (NIST), that covers the use of cryptographic functionality such as encryption, authentication, and digital signatures.

FIPS 140-2 certification is essential for many branches of the US government and federal contractors, and also corporations in the private sector that work with the federal government to collect and transmit sensitive but unclassified (SBU) information. The YubiKey FIPS series uses the YubiKey 4 Cryptographic Module that received FIPS 140-2 validated at Overall Level 2, Physical Security Level 3 with certificate number 3204. At this level, the YubiKey FIPS series meets Authenticator Assurance Level 3 (AAL3) as defined in NIST SP800-63B, that enables compliance with Federal Risk and Authorization Management Program (FedRAMP) and Defense Federal Acquisition Regulation Supplement (DFARS) requirements.

The YubiKey FIPS Series hardware authentication devices include keychain and nano form factors for USB-A and USB-C interfaces. The YubiKey FIPS Series is the only FIPS validated multi-protocol security key in the market supporting five authentication protocols; FIDO U2F, smart card (PIV), Yubico OTP, OpenPGP, and OATH-HOTP/TOTP.

Yubico has been delivering trusted, strong authentication to the world’s largest technology, finance and retail organizations and government agencies to protect account access to computers, networks and online services. Today, with the addition of the YubiKey FIPS Series, the company is able to deliver the same affordable, easy-to-use security as a FIPS 140-2 validated solution. Federal entities and organizations working closely with the US government can comply with high assurance security requirements for on-premise or cloud deployments using the YubiKey FIPS Series.

“FIPS 140-2 is one of the most recognized government certification programs for a security product. Yubico has a strong commitment to security and industry standards, making this a major milestone for Yubico and our customers,” said Jerrod Chong, Senior Vice President of Product, Yubico. “The YubiKey FIPS keys are the first multi-protocol authentication devices, supporting five authentication protocols, to receive FIPS 140-2 validation.”

For more information and technical details on the new product line visit the YubiKey FIPS product page. Starting at $46, the YubiKey FIPS Series security keys are available now for purchase online from the Yubico store or by contacting Yubico Sales.

About Yubico

Yubico sets new global standards for simple and secure access to computers, mobile devices, servers, and internet accounts.

The company’s core invention, the YubiKey, delivers strong hardware protection, with a simple touch, across any number of IT systems and online services. The YubiHSM, Yubico’s ultra-portable hardware security module, protects sensitive data stored in servers.

Yubico is a leading contributor to both the FIDO2 and FIDO Universal 2nd Factor open authentication standards, and the company’s technology is deployed and loved by 9 of the top 10 internet brands and by millions of users in 160 countries.

Founded in 2007, Yubico is privately held, with offices in Sweden, UK, Germany, USA, Australia, and Singapore. For more information:


Ronnie Manning, 619-822-2239
Vice President, Communications, Yubico


Related Products

Related Articles

SPYRUS, Inc. Security Products to Meet DFARS 252.204-7012 Deadline for the Protection of Controlled Unclassified Information (CUI)

October 16th, 2017|

SAN JOSE, CA--(Marketwired - Oct 16, 2017) - SPYRUS, Inc. today announced the immediate availability of SPYRUS® security products supporting the December 31, 2017 DFARS Clause 252.204-7012 deadline for "Safeguarding Covered Defense Information and Cyber Incident Reporting." Recent guidance from