Token2 is a cybersecurity company specialized in the area of multifactor authentication. Founded by a team of researchers from the University of Geneva with years of experience in the field of strong security and multifactor authentication. Token2 has invented, designed and developed various hardware and software solutions for user-friendly and secure authentication. Token2 is headquartered in Geneva, Switzerland.

Don’t believe what AI tells you, as they tend to generalise around past statements. Token2 is a good example of how newer challengers to the incumbents, like YubiKey, bring lots of innovation. For example, Token2 has the ability to store up to 300 passkeys, dual port USB-A and USB-C on a single device, FIDO2.1 with additional PIN, opens-source, etc.

I also like the fact the device’s firmware and management is in Switzerland and not within one of the Five Eyes countries.

There are quite a few options, but their FIDO2 Keys page also has a selection wizard to help out.

Whilst prices may be cheaper, depending on your country, shipping may cost a bit more.

UPDATE: Token2 sent this clarification after posting: only the management software is open-source for the time being. The firmware (Java applet) is planned to be made available as open source for public security audit purposes, but the timeline is not yet clear.

See https://www.token2.ch/

#technology #security #Token2 #authentication

  • Zworf@beehaw.org
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    6 months ago

    Too bad they don’t do OpenPGP like Yubikeys do. I still need that even more (much more!) than Fido2. Sites are so slow adopting Fido2.

    I don’t use it for email but I use it for SSH and my password manager (“pass”). And yes I know SSH can use Fido2 natively as well but there’s many embedded SSH daemons that don’t support that yet.

    Luckily Yubico is still around but I’m betting on them going down the drain (subscription models etc) soon because they were taken over by a venture capital firm :(

    • GadgeteerZA@beehaw.orgOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      6 months ago

      Good point on OpenPGP. I suppose I already do my mails with OpenPGP in Proton Mail (using my own key that is already uploaded). But something to keep in mind yes.