How is my YubiKey 5 security key more secure than an emailed code for MFA?
Why YubiKey?
How does the YubiKey secure my accounts?
What if I lose my YubiKey device?
Should I also configure a backup authentication method besides my security key?
If I set up YubiKey for my account, then change the password for that account, do I need to update the YubiKey with the new password?
How is my Yubikey more secure than an emailed code for MFA?
TBD
Why Yubikey?
Yubico, the company that developed the YubiKey series, has been highly involved in creating the FIDO2 standard on which security keys work. YubiKey's proven reputation as a reliable device and the company's higher education program helped us choose this brand and series.
Also, we have vetted the Yubikey 5 series and know that it is compatible with our supported operating systems and our supported platforms like Microsoft 365, etc.
How does the YubiKey secure my accounts?
In traditional authentication, user names and passwords are stored on the account's server, and you only need to log in for access. However, if the account's servers are hacked, and your username and password stolen, thieves have access to your account (until you change your password). Two-factor authentication requires a second form of identification - usually a mobile phone to verify that you are the one logging in to your account. More secure than just a username/password, especially using an authenticator app, but the credentials are still stored on the account's servers and vulnerable to hackers. Or you can lose your mobile device or it could be stolen... A security key is a physical device that 1) stores your account username and password so that it's no longer on the account servers, and 2) replaces your mobile device for the 2nd factor in the authentication process. There are two types: USB that plugs in to your device, and NFC that works like Blue Tooth (although it is not Blue Tooth). Both are encrypted and store your account information. After key registration, log in to your account, then verify with a finger touch or tap. Easy!
What if I lose my YubiKey device?
It is recommended that when you configure your security key that you ALSO set up a spare key at the same time and keep it in a secure location. Also, make sure that you also configure more than one form of account authentication (MFA) for your ECU account so if one method is not available, you have an option for log in.
Should I also configure a backup authentication method besides my security key?
Yes! Microsoft's Azure MFA allows you to set up multiple methods of authentication. If one method is not available you can still access your account.
If I set up YubiKey for my account, then change the password for that account, do I need to update the YubiKey with the new password?
No, you don’t need to update the YubiKey with the new password. The YubiKey itself doesn’t store your account passwords. Instead, it acts as a second factor for authentication, providing a one-time password (OTP) or a cryptographic signature to verify your identity. When you change your account password, the YubiKey continues to function as usual without needing any updates.
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer
insert anchor question
answer