YubicoSecurity Key C NFC - Basic Compatibility - Multi-Factor authentication (MFA) Security Key, Connect via USB-C or NFC, FIDO Certified

Works perfectly with many apps, keeps accounts secure by having a security key.

Easy to use in a compact size. Good Value for money

While this key is cheaper, its functionality is slightly limited in comparison to some other Yubikey models. I didn't realize this at the time, and got a bit lost in all the product reviews and comparisons. This one serves as a second factor authentication method for many popular websites, but does not support the Yubikey Authenticator app. I'm keeping it anyways, because it serves my main objective, but I can't help but be a bit disappointed that for a little more money I could have added a bunch more features. It's also a bit confusing to get started, but the Yubico tech support responded to my question within a couple hours, which was nice.

I bought two. I didn't realize that I could not just make a backup from one to the other but I will likely get around to creating the backup by going through the process twice each time. The number of web sites using physical keys is limited but I expect the numbers will grow. Too bad that most financial institutions don't seem interested in the key approach. It's a little off-putting! I like the idea and I keep the security key out of the computer until I need it. When it's supported the logins happen quickly which I really like. The other aspect is that it seems that the security key does not obviate the need for the password associated with your login.

It works with windows, no complaints.

it is a nice handy security key. I was able to easily set it up.There is a green indicator light that blinks when action is needed, in this case a touch on the 'y' logo works.I've been able to connect it with my phone via the USB charging port and it works.It is a functional little key that I can carry with my keys.It seems to be durable, so far at least.

After reading that even with 2-factor authentication [2FA] or one-time password [OTP] cyberthieves can gain access to your online accounts through a sim swap I thought I should get a physical security key. This little device stores information and generates one-time numbers for you to log in to a site, but you have to register it once, for each online account you use. A bit of online search suggested Yubikey 5 as an affordable, dependable and easy-to-use physical key. One was advised to buy two, with one as a back-up: if you lose one, you still have a second one.After the two keys arrived I tried it out. The first challenge: the key needs a USB-C port for connection to a laptop. My laptop has two USB-C ports. One is used for power, the other for the mouse receiver. So I bought a USB-C splitter. I should have checked online – I found out you can’t plug the power USB-C connection into a splitter [it does not charge], and the Yubikey is not recognized when sharing a spitter with the mouse receiver.However the biggest drawback is that mainstream financial institutions are not set up for use of a security key. One bank uses a security token [which is not the same as a security key], another only goes for two-factor authentication. Basically the only two common online sites for me were Microsoft and Google. Even that was not simple. When you plug the Yubikey into a working USB-C port, you apparently need to set up a pin but if that already exists or if you need to set up a new one is unclear. There is no ‘easy set-up’ or’ set-up for dummies’-something really simple that guides you through a Yubikey set-up even for Microsoft. The Yubikey instructions consist of a 130 page PDF filled with jargon. You apparently have to go into your computer’s Microsoft account settings to include a security key. Also did you know that for Google your pin [4 numbers] is not the same as your Google password? I locked myself out from including the Yubikey on the Google account because I could not understand what the pin was Google was asking for.In addition, I don’t think a security key solves the problem of a sim swap for the average person. Although you could use it to log into Gmail or Microsoft [provided you got that going] on your cell phone using near-field communication [NFC], people don’t usually log in to those accounts separately anyway on a cell phone. Once the phone is off the lock screen, most apps are ready to go without additional authentication. Maybe I am less smart than the average person but in the end, my two Yubikeys and the USB-C splitter will end up on the electronics trash pile.

Browser password management has been hacked. SMS one-time passwords has been hacked. I'm an IT provider and see the effects of people's email accounts getting hacked frequently and it can be devastating, resulting in financial losses and loss of social media accounts. These are easy to use and I am astonished everybody doesn't have at least 2 (DO NOT BUY 1; you need 2 unless you're an idiot, which is why I have 3) Your keys should not be in the same place at the same time. I keep one at home, one in my office, and one on my keys.If nothing else, secure your password manager (yes, you need a password manager) and your email accounts. These are super simple to use, so that's not an excuse. Once you're comfortable, REMOVE BACKUP authentication methods. The Yubikey doesn't help if the bad guy can just hit "try another way" and bypass them. In the event you get an email and Microsoft/Google/Yahoo is requiring you to authenticate, and the Yubikey doesn't work, you're getting phished... STOP and check the URL.These use a standard called FIDO2 and while there are other brands, and they all do the same thing, I've found Yubikeys to be the thinnest, easiest to carry, and most durable. Nobody charges to use them, so this is a one time expense. Having an iPhone with a Lightning connector is no excuse; just hold the key behind the camera and NFC takes care of the rest.These are supported by Amazon, Microsoft, Google, AOL/Yahoo, Bitwarden and all other decent password managers, Morgan Stanley, Vanguard, and a host of other services. Again, once you're comfortable they work, remove the backup authentication methods. If you want to keep something, set up a dedicated password reset email just for this purpose an do not give it to anyone. You can also use it for banking, but nothing else.Seriously, buy 2 or 3 right now.