What is a USB token and how to use it

The concept of a USB token

Since protecting accounts with a login and password has long been outdated, back in the early 2000s, many manufacturers began to offer USB tokens as an alternative solution. These are hardware keys for secure authorization and secure storage of personal data. Outwardly, they resemble USB drives (flash drives), but have significant differences.

Initially, USB tokens in Ukraine were used to store EDS (electronic digital signature). After a law was adopted in Ukraine in 2003 preparing the introduction of an EDS, itbecame necessary for entrepreneurs to submit reports electronically. In 2008, the submission of electronic reports to the Pension Fund was fixed by law, and the number of those wishing to send reports by mail increased from 40% to 70%. At the same time, according to the law, the signature must be stored on secure media and not transferred to third parties. Perfect for this purpose tokens with EDS.

However, USB tokens can store not only digital signatures, but also passwords, seals, digital certificates, electronic keys, biometric data, etc. Therefore, tokens are great for protecting digital information and secure authorization on devices or services, including for two-step, two-factor or multifactor authentication.

Но, конечно, многое зависит от типов устройств — производители предлагают разные варианты, подходящие для самых различных целей: какие-то токены предназначены только для хранения ЭЦП, какие-то подойдут только для входа, например, в ОС Windows, а какие-то можно пронумеровать и выдать сотрудникам для авторизации в корпоративных аккаунтах.

What is the difference between a USB token and a flash drive

• Tokens, unlike a flash drive, secure devices. Therefore, we immediately make a reservation: it will not work to make a USB token from a USB flash drive.
• File data on a flash drive can be added or changed, but not on a token.
• The key located on the token never leaves the device, and data from a flash drive can be easily transferred to another medium.
• The information on the flash drive can be read by almost anyone, but not on the token. It is encrypted.
• The resource of a USB drive is usually limited. Whereas USB tokens from trusted manufacturers are designed for more secure and long-term storage of credentials.

It is very important to choose a good quality token – this way you reduce the risks of unauthorized use of your data or signature.

How to choose a quality hardware key – security token

In order to select good quality devices, we recommend that you adhere to the following criteria:

• International certification. You can, of course, try to use budget options from little-known manufacturers for home purposes. But in this case, there is no guarantee that vulnerabilities and malware were not embedded in the devices during production.
• Support for common security protocols. This is important for the easy integration of the device into the services you choose.
• No moving parts, impact resistant housing. Such devices will last for many years, and you can not worry about their frequent replacement.

Today, Yubikey USB tokens meet all the above requirements.

There is also a wide selection of these products:

• Among USB tokens, you can choose both budget options for home use, and hardware tokens with enhanced protection for employees of government agencies, banking institutions, IT corporations, etc.;
• The list of devices includes series that support one-time OTP passwords or protocols for 2FA, there are tokens specifically designed to work with popular services from Microsoft, Google, Facebook, Twitter, etc.
• The manufacturer was concerned about the possibility of using keys on any device, so he offered various form factors: there are keys with USB-A connectors for PCs, there are USB-C for mobile devices, and there are also Lightning tokens for iPhone.
• There are also nano-keys that fit into the USB connector and slightly protrude from the device body. This is very convenient, as they remain invisible and do not interfere with moving along with a laptop (if you like to travel, for example).

In addition, all Yubikey keys not only have a reliable impact-resistant housing made of composite material reinforced with fiberglass, but also enhanced protection against dust and moisture – IP68. If you suddenly drop the device into the pool or accidentally forget the USB token in your pocket while sending your clothes to the laundry, nothing will happen to it.

And given that Yubikey has become the choice of such major IT corporations as Google, Facebook and Binance, there is no doubt about the reliability and quality of products.

When choosing keys, be guided primarily by the purposes for which you want to use them. To make your task easier, we, as the official distributor of products in Ukraine, we can provide, upon your request, information with a list of services that support certain series of devices. Contact us!