YubiKey 5 FIPS Series uniquely recognized in Department of Defense guidance for hardware-based FIDO2 passkeys, bridging modern authentication with existing identity systems.
Yubico the pioneer of phishing-resistant authentication and creator of the most secure hardware-backed passkey, the YubiKey, today announced the certification of the next generation of its YubiKey 5 FIPS Series – now FIPS 140-3 validated with with Certificate #5291. Published by the National Institute of Standards and Technology (NIST), this milestone represents the latest evolution in cryptographic module validation and reinforces Yubico’s leadership in delivering hardware-backed phishing-resistant authentication. The YubIKey 5 FIPS Series supports Zero Trust and modern cybersecurity mandates, and is trusted by governments, defense organizations and the world’s most security-conscious enterprises.
“Yubico is setting a new standard for high-assurance authentication, combining government-grade compliance with hardware-backed passkeys,” said Albert Biketi, chief product and technology officer at Yubico. “YubiKey 5 FIPS Series is the only authenticator authorized by the U. S. Government to hold both Department of Defense PKI credentials and FIDO2 passkeys – giving government and regulated organizations a secure bridge to passwordless. With the transition from FIPS 140-2 to FIPS 140-3, government agencies and regulated organizations are moving to a new global standard for cryptographic security – and Yubico is leading this shift with the upgraded YubiKey 5 FIPS Series.”
For organizations responsible for protecting sensitive information – including U. S. federal agencies, defense contractors and regulated industries – transitioning to FIPS 140-3 is a foundational requirement to maintain compliance and security assurance. As the only authenticator authorized by the U. S. Department of Defense to hold both DoD PKI credentials and FIDO2 passkeys, this unique dual capability simplifies deployments while strengthening phishing-resistant security – allowing organizations to leverage a single hardware device to support FIDO2/WebAuthn, PIV/Smart Card authentication, OpenPGP and OATH OTP.
For more information about the technical details read here.