List of Security key (Security Key / FIDO-Token), which can be used in AGOV
What is FIDO and where are FIDO keys used?×
FIDO stands for Fast IDentity Online. It is a set of open, licence-free standards and protocols developed by the FIDO Alliance for secure and more user-friendly authentication on the Internet. There are several implementations of FIDO, including FIDO U2F (Universal Second Factor) and FIDO2, which are widely used in modern web browsers and platforms. Using these protocols, passwordless two-factor authentication based on public-key cryptography is possible.
×
The main goal of the Security key (Security Key / FIDO-Token) is to address the known weaknesses of the standard user login with username and password as well as simple two-factor authentications (email, AuthApp, SMS).
FIDO2 allows either two-factor authentication, in which the usual username-password login is supplemented by encryption with FIDO2 keys and an additional FIDO2 token (hardware), or completely password-free authentication, which works without entering a password. Even if the login data should be compromised, the FIDO2 login only succeeds with the respective hardware token or the private key, which is also bound to a dedicated hardware. Biometric data, if such a feature is used, never leaves the user device.
×
Security key (Security Key / FIDO-Token) are procured by the end users themselves in the electronics trade. Depending on the manufacturer and the type (connection type, PIN, biometric), these cost between 20 and 120 Swiss Franc.
AGOV supports the following Security key (Security Key / FIDO-Token)
You need a FIDO Security Key which supports FIDO2/WebAuthn. Below is a list of FIDO Security Keys that have been successfully tested with AGOV.
YubiKey Bio Series
PRODUCT DESCRIPTION: YubiKey Bio SeriesPROTECTION: Fingerprint reader with PIN
CONNECTION OPPORTUNITIES: USB-A and USB-C
PRICE: Swiss Franc 100.00 - 120.00
SUPPORT: FIDO2/WebAuthn and U2F
Sources of supply
×
To find sources of supply, enter the following in the Internet search engine of your choice:"YubiKey Bio Series"
YubiKey Security Key Series
PRODUCT DESCRIPTION: YubiKey Security Key SeriesPROTECTION: Integrated touch key with PIN
CONNECTION OPPORTUNITIES: NFC, USB-A and USB-C
PRICE: Swiss Franc 45.00 - 65.00
SUPPORT: FIDO2/WebAuthn and U2F
Sources of supply
×
To find sources of supply, enter the following in the Internet search engine of your choice:"YubiKey Security Key Series"
Token2 T2F2-Bio2
PRODUCT DESCRIPTION: Token2 T2F2-Bio2PROTECTION: Fingerprint reader with PIN
CONNECTION OPPORTUNITIES: USB-A
PRICE: Swiss Franc 40.00
SUPPORT: FIDO2/WebAuthn, U2F and TOTP
Sources of supply
×
To find sources of supply, enter the following in the Internet search engine of your choice:"Token2 T2F2-Bio2"
Token2 T2F2-NFC-Slim
PRODUCT DESCRIPTION: Token2 T2F2-NFC-SlimPROTECTION: Integrated touch button with PIN
CONNECTION OPPORTUNITIES: NFC, USB-A + USB Type-C (with optional adaptor).
PRICE: Swiss Franc 20.00
SUPPORT: FIDO2/WebAuthn, U2F, HOTP and HOTP (with Companion App)
Sources of supply
×
To find sources of supply, enter the following in the Internet search engine of your choice:"Token2 T2F2-NFC-Slim"
Important:
If you can no longer use your security key, e.g. due to loss or defect, you will lose all access via AGOV and will have to complete the complex recovery process in the AGOV support portal «AGOV me». Avoid this by also registering one or more additional mobile device(s) in your AGOV account with the AGOV access app or an additional security key (FIDO token).