What happens if I lose my YubiKey?
If you lose your Yubikey, you can still use your phone authenticator app, but you cannot create a backup Yubikey. However, Yubikey also provides methods to recover your account, so you can get a replacement. An advantage to Yubikey is that it comes on a USB that cannot be identified.
What happens if I lose both my security key and my phone? You'll have a set of printed recovery codes, which you should store on paper in a safe place.
If the phone is lost or stolen, the likelihood of anyone's being able to use the authenticator is practically nil, because they'll be unable to unlock the phone. With YubiKey, there is only the security key. It is not secured by a complex passcode, as the phone is.
If you lose or otherwise break your Yubikey you'll need to speak to support. Edit: You may now register up to 5 Yubikeys to your Binance.com account.
Also, you could buy a 2nd Yubikey, register it with all of your accounts, and keep it somewhere safe. So if the 1st is lost, use the 2nd, and buy a 3rd and register it with all accounts.
...
To remind myself of what is necessary, here are the steps:
- Get your master key from the backup USB stick.
- revoke the three subkeys that are on the Yubikey.
- create new subkeys.
- install the new subkeys onto a new Yubikey, update keyservers.
How long does a YubiKey last? The internals of the YubiKey's security algorithms currently limits each key to 30+ years of usage. The Yubikey is powered by the USB port and therefore requires no battery and there is no display on it that can break. The key itself will survive years of daily use.
The U2F feature of YubiKey wasn't compromised by the vulnerability. The vulnerability is real and still exists. There was even someone in this HN thread that was planning to use an old key fob Arstechnica sent him, specifically for the OpenPGP feature.
> A Yubikey can be hacked to send arbitrary keystrokes - but that's of limited usefulness.
Customers are now able to shift cryptocurrency security from complicated cold-wallet storage at the coin level to a much simpler, and stronger method at the exchange level. Customers use YubiKey s to secure critical transactions like trades and transfers using YubiKey's strong yet simple security.
Do I need two Yubikeys?
A: Nope, this is not necessary. There is nothing wrong with purchasing a backup key that is a different form factor than your primary key. It will work the same as long as it is from the same YubiKey series. Q: Do I have to register my backup key immediately?
For static passwords, you likely will not need a backup of the original credential, but will be able to use the YubiKey's output (the static password it "types") to program your backup key(s).
But researchers have now shown that it is possible to clone keys -- given the key, a few hours, and thousands of dollars. Researchers from security firm NinjaLab have managed to make a clone of a Google Titan 2FA security key. The process makes use of a side-channel vulnerability in the NXP A700X chip.
To set up a USB security key, you need a USB drive and a USB security key app. You install the app on your computer, set it up, and then use it to create your USB security key. Whenever your computer is on, the app constantly scans your USB ports for a device that contains a specific encrypted file.
- Turn on 2-Step Verification and choose a second verification step. ...
- On your Android phone, go to myaccount.google.com/security.
- Under "Signing in to Google," select 2-Step Verification. ...
- Scroll to "Security key" tap the Right arrow .
- At the bottom left, tap Add security key.
However, Security Key serial numbers can be used on multiple customer accounts. Both Security Keys and hardware tokens can be assigned to a maximum of 100 users in the same account. Learn more in Can an authentication device be assigned to more than one Duo user?
If you lose your key or decide you don't want to use it anymore, you can remove it from your account. After a key is removed from your account, you can't use it to sign in unless you register it again.