YubiKey
By Yubico
A physical authenticator supporting FIDO2/WebAuthn, PIV, and OTP. FIDO credentials remain on the device, which makes that authentication flow resistant to credential phishing. Yubico sells fleet purchasing and lifecycle management through YubiEnterprise, while the Bio series adds on-key fingerprint matching.
Verified Source: 1
- Product type
- Hardware
- Deployment
- On-premSaaS
- Organization size
- IndividualSMBMid-marketEnterprise
- Pricing tier
- $
Capability checklist
MFAHow YubiKey measures up against the full MFA & Passwordless Authentication taxonomy.
- Phishing-resistant factors — supported
- Supports FIDO2 security keys and passkeys that can't be relayed or phished.
- Push & one-time-passcode factors — supported
- Offers mobile push approval and time-based one-time codes as second factors.
- Adaptive step-up authentication — not supported
- Requires stronger verification only when the login looks risky.
- Biometric authentication — supported
- Uses fingerprint or face recognition built into user devices.
- Device trust signals — not supported
- Factors device health and enrollment status into the authentication decision.
- Admin enforcement policies — not supported
- Lets admins mandate MFA or passwordless methods by group, app, or risk level.
Alternatives
Other MFA & Passwordless Authentication tools with overlapping capabilities, sized for similar teams.