New Yubico security keys let you log in with a tap to your USB-C port

This page summarizes the projects mentioned and recommended in the original post on /r/privacytoolsIO

Our great sponsors
  • WorkOS - The modern API for authentication & user identity.
  • LearnThisRepo.com - Learn 300+ open source libraries for free using AI.
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • pass-import

    A pass extension for importing data from most existing password managers

    I've been using one as an OpenPGP smartcard to encrypt my pass password database. Each password file can only be decrypted with the Yubikey, and the private key is kept in the tamper-resistant processor on the key. I have a PIN set on the key with lockout enabled - so if the key is stolen, an attacker only gets a few tries before the key locks itself out. It's effectively a fully local 2FA password management solution. I handle syncing the encrypted password store between devices using git.

  • YubiKey-Guide

    Guide to using YubiKey for GPG and SSH

    There's a good setup guide here that goes through key generation and provisioning using a LiveUSB: https://github.com/drduh/YubiKey-Guide. If you follow that guide, the only two copies of your private key will be on your Yubikey (hardened, not supposed to be extractable) and on your backup flash drive.

  • WorkOS

    The modern API for authentication & user identity. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts