To help users better secure their accounts, GitHub is expanding its authentication system to support FIDO Universal 2nd Factor (U2F)—a rapidly growing open authentication standard.
GitHub encourages developers to build U2F support into their own applications as well, enabling authentication with simple user experience and strong security using public key cryptography. U2F is built to protect against phishing and man-in-the-middle attacks, allowing one U2F authenticator to access any number of services without any shared secrets. Since U2F has native support in platforms and browsers, there’s no need for drivers or client software. Visit github.com or yubico.com to find out more about U2F and how to use it with your GitHub account and other applications you are building.
Now Dropbox users can secure their files with U2F-powered strong authentication devices, including YubiKeys, to protect against advanced malware, phishing, and man-in-the-middle attacks. Find out how to protect your account! And see more at yubico.com/dropbox.
In this video in the how-to series, I want to show you a YubiKey being used with DropBox's two step verification. DropBox today uses the OATH standard for this, but requires a Time Based One Time Passcode - or TOTP. To achieve this, we use the YubiKey's Challenge Response capability introduced with version 2.2 together with a helper app - YubiTOTP - which I have downloaded from yubico.com/totp
First I need to enable 2-step verification; I'm at the DropBox start screen. I enter my credentials and sign in, and click on my name to get my account options and I select the Settings item. In the Settings screen, I select the security tab and towards the bottom I see Two-step verification - and I click on the change hyperlink to bring up the Enable two-step verification wizzard. I click on get started. DropBox asks me for my login password again.
I click on the "Use a moile app" option; this will generate a secret that I can load onto my YubiKey. DropBox first shows me a 2D Matrix code I could use for a mobile app like Google Authenticator - but I need a copy of the secret - so I click on the "enter your secret key manually" hyperlink. I'll copy this to the clipboard, and DropBox asks me for the 6 digit OATH code - time to set up my YubiKey.
I right click on the YubiTOTP icon in the system tray and select "show configuration window". I already have my regular YubiKey connected - so I click on the Check button. It shows that slot 2 if free on my YubiKey - so I will use this for the DropBox secret by clicking Yes and then paste the secret into the box. The app asks me to confirm I want to program slot 2 - so I click OK and see the success dialog. The one time setup of my YubiKey is now complete. I close the window and return to DropBox. To send DropBox the One Time Passcode, I just double click the YubiTOTP icon in the system tray - and it sends DropBox the 6 digit code. DropBox completes the set-up by asking me to record an emergency backup code and two-step verification is enabled on my DropBox.
OK let's test this out - I log out of my account and sign in again. Having entered my username and password, I now get the "Enter security code" page; I just double click the YubiTOTP icon in the system tray and I'm in - 2 step verification with DropBox and the YubiKey - is as simple as that.
Want to know more, please goto Yubico.com
Uploaded 931 Plays1 Like0 Comments
Disk Encryption is great for Laptop users - it renders your laptop useless unless you know your password. However, for this to be secure, you need a long random password - which of course, is difficult to remember or enter. Yubico has the answer: program your YubiKey for a static password (44 characters - 176 bits of randomness) - and you are really secure. This video shows this in operation.
Uploaded 18.9K Plays8 Likes0 Comments
This "How-to" video from Yubico shows the YubiKey 2.1