Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Thursday August 22 2019, @12:35PM   Printer-friendly
from the pick-a-standard-please dept.

Submitted via IRC for SoyCow3196

This new YubiKey will offer dual security for Apple users – TechCrunch

Almost two months after it was first announced, Yubico has launched the YubiKey 5Ci, a security key with dual support for iPhones, Macs and other USB-C compatible devices.

Yubico’s newest YubiKey is the latest iteration of its security key built to support a newer range of devices, including Apple’s iPhone, iPad and MacBooks, in a single device. Announced in June, the company said the security keys would cater to cross-platform users — particularly Apple device owners.

These security keys are small enough to sit on a keyring. When you want to log in to an online account, you plug in the key to your device and it authenticates you. Your Gmail, Twitter and Facebook account all support these plug-in devices as a second-factor of authentication after your username and password — a far stronger mechanism than the simple code sent to your phone.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 3, Informative) by Pino P on Thursday August 22 2019, @02:52PM (1 child)

    by Pino P (4721) on Thursday August 22 2019, @02:52PM (#883643) Journal

    Your Gmail, Twitter and Facebook account all support these plug-in devices as a second-factor of authentication after your username and password — a far stronger mechanism than the simple code sent to your phone.

    But do these sites let you configure 2FA without giving the site an SMS-capable phone number? I know Gmail does if you have an Android device with Google Play or an iPhone or iPad with the Google Search app installed. But last I checked, Twitter did not. It doesn't let you configure 2FA through TOTP (such as Google Authenticator) or U2F (such as YubiKey) without first verifying an SMS-capable phone number, and if you remove the SMS-capable phone number from your account, Twitter also removes the TOTP or U2F from your account. And yes, it has to be an SMS-capable phone. I tried it on a Frontier land line and on an AT&T voice-only "wireless home phone" line, and Twitter gave an error in both cases instead of attempting a voice call.

    Starting Score:    1  point
    Moderation   +1  
       Informative=1, Total=1
    Extra 'Informative' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   3  
  • (Score: 0) by Anonymous Coward on Thursday August 22 2019, @09:55PM

    by Anonymous Coward on Thursday August 22 2019, @09:55PM (#883797)

    It's true that Twitter is a PITA regarding this. I got around it by asking my local pizza delivery guy if he wanted an extra $10 tip. He said "yes" and I used his mobile number to get the tweet code.