Yubico - YubiKey 5 NFC - Two Factor Authentication USB and NFC Security Key, Fits USB-A Ports and Works with Supported NFC Mobile Devices - Protect Your Online Accounts with More Than a Password

The YubiKey 5 NFC is top-tier in its class: excellent security, broad compatibility, and great flexibility in connectivity. If you care seriously about protecting your accounts, it’s a very worthwhile investment. The trade-offs — cost, need for backup key(s), setup effort — are real but manageable, and in my view acceptable for the level of protection you gain.

The Yubikey is a very good very secure device but like anything in the IT security world, it takes a while to learn how to use it and set it up and of course the methods vary, depending on your device types. And buy two, you need a spare just in case you lose one. I use Windows and Android so I have the Yubico authenticator app on my phone and use that to access many of my accounts in the traditional way, by adding an authenticator app to whatever account I want to use the Yubikey to access. When the QR code is presented, with the Yubico app open on the phone and in the accounts page, I press the 3 dots top right then add account, scan the QR code and save the account by re-scanning the Yubikey. I DONT input the presented code to the account yet though, I REPEAT the process for my spare YubiKey's first then when I do the last key and the account is added to all the keys, then I complete the process by adding the one time passcode as requested. Easy! On my PC I plug the key into my USB port and input the pin that I setup using the Yubico authenticator app from Windows store, this way I have to physically touch the copper contact on the key to log into whatever account I have setup using FIDO in this case versus NFC that the phone uses. There are plenty of videos on YouTube showing how to set these keys up, it just takes a day or so to get your head around it if you are new to passkeys, but what's a day or so of learning for the extra security these keys give you? Lastly, some of the reviews are concerned about vulnerabilities in the older firmware but the two keys I purchased have firmware 5.7.1 which is the latest firmware. As for one reviewers post about a criminal running a program on your device, that assumes they have stolen the device AND KEY, can get past the device sign in security and also know the pin number for the key too which you should set for NFC and FIDO. If somebody has your phone, can access it, has your key and knows the pin to it, has your accounts and knows the usernames and passwords, vulnerabilities are already a moot point. These are very good devices adding a level of security that is just not possible with other 2FA methods.

Works great for USB. I use it for Windows logon and for Yubico Authenticator app for sites that have OTP codes. It's also supported by Lastpass and Google. Of course, you'll probably want to get two of these as a backup in case you lose one. I have one permanently at home and the other on my keyring for mobile/laptop use when out and about. The one slight drawback as by design, many sites that support 2FA, only allow you to register one code. Ideally, you would register separately for each Yubikey, rather than having to set up the same on both Yubikeys at the same time, this way, if a Yubikey is lost, you can revoke the 2FA only for the lost key. One small drawback is you'll need both Yubikeys to hand every time you set up or remove a 2FA, to update both, as may sites/apps don't let you see the QR code again once it's been set up. This is perhaps offset by the useful ability to plug the Yubikey into any device, securely use your 2FA/auth, and then unplug it, rather than having to set it all up again for every device. It takes a bit of time to set up and get used to, but you'll be in a much more secure once it's done. The NFC feature never worked on my Huawei/Honor Play phone, despite all sorts of fiddling around with the NFC settings, so I had to use an adapter to USBC to use the YubiKey with this phone, but I just upgraded to a Google Pixel 6 and it works pretty well once you get the technique of how to hold it behind the phone. (doesn't need to physically make contact, just hold quite close to the back) I haven't got SSH/PGP working with it yet as this seems quite complicated to do on Windows and the documentation is somewhat lacking in this area.

I am very pleased with the Yubico YubiKey 5Ci. Shipping was prompt, and the security key arrived well-packaged and protected, with no signs of damage. The dual-connector design—featuring both USB-C and Lightning plugs—was exactly as advertised and ready for immediate setup. In terms of product quality, this YubiKey feels solid and reliable. The build quality gives confidence that it will withstand daily carry on a keychain, and the connectors seat securely into devices without wiggle or looseness. Setting it up with my accounts was straightforward; the configuration steps were clear and compatible with the MFA options in most services I use. Functionally, the key enhances security through hardware-based authentication rather than relying solely on passwords or SMS codes. It supports modern authentication standards such as FIDO2/WebAuthn and U2F, providing a practical second factor for logging into email, cloud services, password managers, and other online accounts that support security keys. The dual Lightning and USB-C connectors make it especially useful for iPhone users and other Apple devices that lack conventional USB ports. Yubico +1 From a value perspective, this security key offers strong protection at a reasonable cost compared with subscription-based alternatives or more complex enterprise solutions. Its broad platform compatibility—covering iOS, macOS, Windows, Linux, and many web services—adds versatility. While not every app supports hardware keys yet, the ecosystem continues to expand, and the YubiKey remains a robust, future-oriented investment in account security. Overall, this is a well-made, dependable MFA solution that combines convenience with significant security benefits, and I would confidently recommend it.

Chegou bem, lacre intacto d chave verifica. Está tudo funcionando perfeitamente

I have used a YubiKey for authentication at work for the past 3 years and while reviewing hardware MFA security keys did quite a bit of research of the various keys out that and the compatibility of the key with different solutions including the ability to authenticate with Windows Hello login, using passkey instead of BIO authentication and this one is one of the few recommended. Additionally, I liked the idea of using it with my cell phone as well and have setup many sites to use passkey authentication including ones like "login.gov" which supports and advocates for passkeys. Tonight I took the YubiKey out of my laptop and authenticated to a web site I had previously setup from my laptop with my mobile phone. I chose "passkey" for authentication then placed the YubiKey against the back of my cell phone with my finger on the touch pad and it immediately authenticated and logged it successfully. Now I can key from both devices once a key pair is setup for a web site so completely portable. You do have to enable NFC from your phone as it is likely off by default. I would buy this again and it works better and is a much easier and more way to login (authenticate) than passwords which are easily compromised. If I knew it was this easy and worked so well before I would have bought it long ago as the FIDO 2 keys have been available for a long time, it is just that many people do not know much about them.

I’ve been using the YubiKey 5C for the past three months across my MacBook, Windows PC, Android phone, and even my newer iPhone (via USB‑C). Here’s why it deserves a top‑tier rating: Design & Build The key feels solid—machined aluminum with a matte finish that resists fingerprints. Its compact, key‑shaped profile slides onto a regular keyring, so I never forget it. No moving parts mean it’s practically indestructible. Setup & Compatibility Out‑of‑the‑box, the YubiKey announces itself as a security key. A quick “insert → tap” sequence registers it with any FIDO U2F/FIDO2‑compatible service (Google, GitHub, Microsoft, Dropbox, etc.). It works flawlessly on macOS, Windows, Linux, Android, and iOS (USB‑C iPhone). No extra drivers or software are required. Security Because the private keys are generated and stored inside the device, they never leave the YubiKey—even if the host machine is compromised. This hardware isolation blocks phishing, man‑in‑the‑middle attacks, and credential stuffing. The built‑in passkey support also enables true password‑less logins with a single tap. Everyday Use Logging in is a breeze: plug the key into the USB‑C port, tap the metal contact, and you’re authenticated. I’ve used it for everything from my primary Gmail account to SSH access on remote servers. The only hiccup was occasionally forgetting the key during a quick coffee run—solved by keeping a backup YubiKey on a separate keyring. The YubiKey 5C delivers enterprise‑grade security with consumer‑friendly simplicity. It eliminates passwords, thwarts phishing, and integrates seamlessly into any modern workflow. At its price point (~$45‑$55), it’s an investment that pays for itself the moment it prevents a single account breach. I highly recommend it to anyone serious about protecting their digital life.