Yubico has its
Security Key NFC on sale for
$13.50. Shipping is $4 or
shipping is free with the purchase of 2 keys. Thanks august_leo
Yubico is also offering
$20 Off when you purchase
Two YubiKey 5 Series Keys.
Shipping is free when you purchase 2 keys.
Note, savings will automatically apply at checkout.
220 Comments
Your comment cannot be blank.
Featured Comments
Which of the following passwords is easiest to memorize?
1. "SlickDeals2020"
2. "4 God So Loved The World"
3. "3!dFi&m_udhUfhhaAEJ75jf@HbzOpm37lauma_25381047361"
You've probably answered #1 or #2. Security professionals (hackers by another name) have tools that generate passwords. Without getting into the details, it would be beyond trivial to crack password #1. Password #2 would take longer, but since it is a passage in a popular book, the time it would take to crack it is reduced. Either one should take less than 1 day to compromise. (The first should take less than 10 minutes)
Password #3 is sufficiently random and has a very long length. It would take even the best known supercomputers *years* to crack that password. That makes it the best password of the 3, but obviously the most difficult to memorize.
That's what a passsword manager like LastPass, 1Password, Keychain with a YubiKey is for. You can generate wildly complex pass phrases that make accessing your data out of reach for most would-be hackers and secure all of that data with a physical hardware device that stays in your possession.
Yes, I hear you: "I haven't done anything wrong; the govt isn't cracking my passwords;I don't care if they get into my acct" and so on. Cool, I get it. Do you. Just know that using your spouse's name and 4 digits makes you the low-hanging fruit for somebody learning how to hack, let alone someone who is competent at their job.
Note that you should always buy a minimum of 2, because if you ever lose a key you don't want to be locked out of your accounts. (should always have 2 associated).
Sign up for a Slickdeals account to remove this ad.
I use Dashlane on my phone and desktop, although I'm considering a switch because they are forcing everyone to switch their browser extension and will no longer support the desktop app. Also, I wouldn't mind securing my google account, which I access through the iOS mail app and the gmail website. Can't think of anything else I'd really use it for as I don't do social media and as folks have mentioned, most banking websites aren't compatible, which I hope will change at some point.
That being said, what are the actual differences between the NFC and the 5 NFC other than the huge price difference? I'd really appreciate some input!
They don't seem to have a comparison tool but they have a tool to help you choose a key. The problem is, it keeps recommending me to to buy two keys, the 5 NFC and 5C, even though I am not selecting the option for USBc.
Else, the security key NFC would suffice for FIDO2 type authentication (like password managers, Google, Facebook etc. except for Lastpass premium which needs 5 series). Hope this simplifies a bit.
Else, the security key NFC would suffice for FIDO2 type authentication (like password managers, Google, Facebook etc. except for Lastpass premium which needs 5 series). Hope this simplifies a bit.
Thanks for the informative reply, repped!
I saw a lot of comments about it. What's better?
Else, the security key NFC would suffice for FIDO2 type authentication (like password managers, Google, Facebook etc. except for Lastpass premium which needs 5 series). Hope this simplifies a bit.
This is the one issue with security keys, not many mobile apps support U2F (which is more secured than TOTP or Yubico's proprietary TOTP). I have to setup TOTP as a secondary authentication method, otherwise, I can't get into my accounts on my mobile apps.
Sign up for a Slickdeals account to remove this ad.
( FIDO2/WebAuthn, U2F, Smart card, OpenPGP, OTP )
My primary goal here is to use one with Bitwarden premium on my mobile and laptop. How would you setup with KeePass and bitwarden
You start getting into very complex MITM attacks, or someone who has physical access to your phone that's a whole other game. We use yubikeys at work, they are fine but I believe they even increment on the models we have ( maybe all now ) so that even if somehow they were able to gain physical access and get the private key it would detect that from the counter and lock the account ( we are talking government level attacks almost at this point ).
There is the problem though, your credentials are only as good as the process on the server side, they can flip that setting and turn off MFA through an account recovery process which is often time weaker than the MFA by far.
Our community has rated this post as helpful. If you agree, why not thank Link3d
You can even stick that usb-a adapter into a usb-a hub and connect that to your computer and it will still work.
https://slickdeals.net/f/14601268-yubico-buy-a-yubikey-5ci-get-two-free-security-key-nfc-s-70
You can even stick that usb-a adapter into a usb-a hub and connect that to your computer and it will still work.
Sign up for a Slickdeals account to remove this ad.
Note that you should always buy a minimum of 2, because if you ever lose a key you don't want to be locked out of your accounts. (should always have 2 associated).