Cloudflare partners with Yubico to help customers adopt a hardware-key security model


Cloudflare announced a new offering to make physical security keys the most accessible and cost-effective solution for customers to better secure their business and employees.

Cloudflare customers will be able to purchase security keys from Yubico, at a “good for internet” cost.

A Zero Trust security model means that no one is trusted, by default, whether they are inside or outside of a corporate network. As such, verification is required for anyone trying to access resources on this organization’s network, including location, familiar devices, and passwords.

Hardware security keys are an additional layer of protection and an MFA method that has proven to be phishing resistant.

Cloudflare customers will be able to claim an offer for Yubico’s series of security keys at discounted prices – as low as $10 – via their Cloudflare dashboard. Large organizations using Cloudflare and purchasing a multi-year YubiEnterprise subscription for YubiKeys will receive a 50% discount on their first year of a 3+ year subscription.

This collaboration aims to make it simple and transparent for organizations of all sizes to acquire, activate and authenticate with security keys.

In July, Cloudflare prevented a breach via an SMS phishing attack that targeted more than 130 companies, due to the company’s use of Cloudflare zero trust associated with YubiKeys.

Physical security keys strengthen the barrier against attacks and work in conjunction with additional security measures such as DNS filtering, browser isolation, cloud email security, etc., where an attacker should compromise every signal.

“We are always wondering how we can do even more to provide the best possible security for our customers and the Internet in general. With the increase in phishing attacks, this means helping to democratize additional security measures to complement the Cloudflare Zero Trust experience. We’ve had this first-hand experience and wanted to make implementing hardware security keys a no-brainer for any organization,” said Danish KnechtSVP, Emerging Technology and Incubation at Cloudflare.

“Working with Yubico is just another way we try to make it as transparent as possible to arm our customers with the best zero trust security strategy. Being a Cloudflare Zero Trust customer presents an easy, fast, and affordable way to ‘implement security keys in your organization, and it’s all part of our larger mission to help build a better Internet,’ Knecht continued.

With Yubico, Cloudflare ensures that physical security keys are:

  • Economic: Deploying security keys can be difficult for companies with smaller security teams or those just starting to use two-factor authentication. By offering security keys at the most affordable price, this offer makes keys less cumbersome for small businesses.
  • Accessible: Now, Cloudflare customers can order the series of security keys, supporting FIDO-based authentication, directly through their dashboard. The YubiKey 5 series, available through YubiEnterprise subscription, supports multiple authentication protocols, from legacy apps to modern FIDO-based apps and services. Exclusive “good for internet” pricing helps introduce the value and functionality of hardware keys to Cloudflare customers.
  • Ease of use : Setting up security keys is easy for participating Cloudflare customers. For administrators, Cloudflare Zero Trust makes it easy to use your security keys with any identity provider (IdP) and integrates both keys and IdP into a complete Zero Trust solution. For employees, a simple guided prompt makes it easy to touch a security key for authentication. Security keys work across all devices, operating systems, and zones within an organization.

“Yubico pioneered the modern security key, the YubiKey, and continues to set the industry standard, protecting enterprise customers and consumers from security threats,” said Stina EhrenvardCEO and Co-Founder, Yubico.

“Today’s attacks require modern MFA. Working with Cloudflare will help put more security keys and YubiKeys in the hands of their customers, deliver the combination of phishing-resistant MFA, and provide peace of mind,” Stina continued.


About Author

Comments are closed.