Some Yubikeys Affected by Infineon Security Weakness Thumbnail
Encryption 3 November 2017

Some Yubikeys Affected by Infineon Security Weakness

By Steve OlshanskyDirector, Trust, Technology, Policy and Strategy

As Robin Wilton discussed a few days ago in Roca: Encryption Vulnerability and What to do About It, yet another security vulnerability has been discovered. If you have one of the ISOC-branded Yubikey 4s that we have given out at some conferences, they were affected by the recently disclosed Infineon vulnerability. See these two links for details:

This issue impacts only some limited uses of the keys. For details, see
https://www.yubico.com/keycheck/functionality_assessment.

You can get your ISOC-branded Yubikey 4 replaced at no cost to you by going to this page and following the instructions.

If you have questions or concerns, please contact Steve Olshansky, Internet Technology Program Manager, at <[email protected]>.

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Encryption 3 May 2023

Encryption Keeps Kids Safe Online

Policymakers are proposing laws that will weaken encryption. The EARN IT Act, STOP CSAM Act, and many other proposed...

Encryption 22 November 2022

Two Things the US Should Do to Protect the Internet and the Security of Billions of People Online

Adopting the practice of Internet impact assessments is not just an option—it’s a must to protect the Internet we...

Encryption 8 February 2022

A Safer Internet Starts with More Encryption

Security is crucial to a safer Internet, and the only way towards a safer Internet is to take encryption off...