What is 2-factor authentication (2FA)?
2-factor authentication (2FA) is an authentication process that is comprised of two elements. The first is something you know, such as a password. The second is something you have, usually a security token or a smart card. 2FA increases your security because if a hacker manages to steal one factor—like your password—they won't be able to gain access without the second factor.
Why do I need 2-factor authentication?
2-factor authentication (2FA) greatly increases your identification and access security by adding a second "factor" to the authentication process. 2FA helps protect crucial data and information such as bank accounts and confidential records without the need to manage multiple complex passwords.
Why is it not secure to rely solely on passwords?
Advancements in technology means hackers have many easy ways to steal static passwords. Common attacks include malware, phishing, Man-In-the-Middle (MITM) attacks, and much more. If the password you use is static, it never changes, which makes it possible for hackers to steal it and use it to access your internal networks. This is why using a second factor to secure your account access keeps you much safer.
What is U2F?
U2F, or Universal Second Factor, is an open authentication standard created by the FIDO Alliance designed to let you securely sign in to a number of web-based services. It's effective at combating real-time attacks such as Man-in-the-Middle (MITM). Learn more.
Buying Hypersecu Products
What locations do you ship to?
We ship globally using Canada Post, UPS, or FedEx. All destinations are subject to the availability of these carriers, as well as exporting regulations where applicable.
Do you have an online store for purchasing your products?
Your online purchasing experience and security is our top priority. We use industry-leading e-commerce service providers such as Amazon.
Do you offer fulfillment services for Information Security Service Providers?
Yes, fulfillment services, such as drop shipping to your clients' locations, are available. Contact us to learn more. We are more than happy to discuss with you how we can help meet your individual requirements.
Do you offer discounts or specials for your products?
Yes, we do offer corporate discounts and special prices for large orders. Please contact us for details.
Can I add my own brand or logo to your products?
Yes, customization services such as branding, special packaging, software customization, and development are available on most Hypersecu products. See our customization guide for details.
What if I'm looking for something tailored for my business needs?
We can provide products and solutions tailored to your needs. Please contact us for details.
HyperFIDO Security Keys
What is FIDO?
The FIDO Alliance is a non-profit organization dedicated to reducing reliance on passwords and usernames for authentication. Their goal is to develop an open set of standards that can be widely adopted in order to change the nature of secure authentication. Our HyperFIDO products are developed using the FIDO Alliance's standards and protocols.
What is the HyperFIDO Security Key?
What is the benefit of using of a HyperFIDO Security Key?
The HyperFIDO security key prevents phishing and can also combat real-time attacks that can breach accounts by secretly intercepting communication between a user and the authentication server. It helps reduce reliance on passwords while increasing security.
FIDO protocols are widely adopted by many online services, making it a versatile solution.
How do I use the HyperFIDO Security Key?
To use the HyperFIDO, register your HyperFIDO security key with the account you want to secure, then activate the device by pressing the button during the registration process. When you sign in later, simply insert the security key into a USB port when prompted and press the button. Learn more.
Where can I use my HyperFIDO Security Key?
How many accounts can I add to my HyperFIDO Security Key?
There is no limitation to the number of accounts with our new generation HyperFIDO security keys. (Previous versions of the HyperFIDO K5, delivered prior to 2017, supports up to 64 individual accounts.)
What if more than one person needs access to the account? Do I have to pass the same device back and forth?
Many services allow you to register multiple security keys under a single account. If more than one person is using the same account, you can each register and use your own HyperFIDO Security Key independently.
How do I set up my Linux system to use my HyperFIDO Security Key?
You’ll need to add a rules file to your Linux system inside the folder /etc/udev/rules.d/. To do so, use one of the following steps:
What’s the difference between HyperFIDO and HyperFIDO Pro?
Standard HyperFIDO keys support only FIDO U2F protocols while the HyperFIDO Pro supports FIDO U2F, FIDO2, and HOTP (event-based one-time password). Be sure to check you have the Pro version if you want to use either the FIDO2 or HOTP features.
How do I use the HyperFIDO Security Key? Is there a manual?
Register your HyperFIDO security key with the account you want to secure, then activate the device by pressing the button during the registration process. When you sign in later, simply insert the security key into a USB port when prompted and press the button.
What browsers support FIDO protocols such as U2F?
Google Chrome ver. 38 or higher and Microsoft Edge support FIDO protocols and compatible applications and services.
Mozilla Firefox Quantum (60.0 or higher) will support U2F if security.webauth.u2f is toggled to true in about:config. However, support for all U2F-compatible applications and services is not guaranteed. Make sure you are familiar with modifying Firefox's configuration before doing so.
We recommend Google Chrome when using FIDO U2F, and that you update your browser version regularly.
Is it possible to duplicate a HyperFIDO key to multiple keys, so that there are always spare copies?
For FIDO-related functions (FIDO U2F and FIDO2): Duplicating a key is not possible. To make spare devices, simply register multiple HyperFIDO keys to your account and keep the spares in storage. Most web applications such as Gmail will let you register more than one security key to use as backup.
For HOTP-related features (HyperFIDO Pro only): You can program different HyperFIDO Pro security keys using the same HOTP seed (secret key). To do so, use the HyperFIDO Pro HOTP Programmer tool.
What happens if I lose or damage my HyperFIDO Security Key? Will I be locked out of my account?
Most web applications will require you to register at least a backup method of authentication, such as a code sent to your phone via text. You can select this backup method to authenticate and access your account. From there, you’ll be able to remove the security key from your account, then register a new one.
If you’re still having trouble accessing your account, please contact the web application’s support team for further assistance, as each service has their own account recovery process.
Are the HyperFIDO Pro Security Keys waterproof?
While our HyperFIDO Pro Security Keys are water resistant, due to the USB contact it should not be considered waterproof. We recommend storing the device in a cool, dry environment and to avoid getting it wet if possible. If it has come into contact with water or another liquid, remove the device if it’s inserted into your computer and dry it off immediately and thoroughly before reinserting it. This will help prevent damage to both the key and your computer.
I don’t remember my PIN for the HyperFIDO Pro. How can I reset it?
For Windows 10: Refer to instructions forresetting your PIN in Managing HyperFIDO Pro on Windows.
For macOS and Linux: Refer to instructions for resetting your PIN in Managing HyperFIDO Pro with Chrome Browser.
Can I use the HyperFIDO Pro without a PIN?
While you can use the FIDO U2F and HOTP features of the HyperFIDO Pro without a PIN, using its FIDO2 features will require a PIN. The PIN is a part of the FIDO2 protocol when registering and signing in. It cannot be turned off or removed.
Can the HyperFIDO Security Key be attacked by computer virus? Does it store any personal data from my computer?
The HyperFIDO Security Key does not store any user data on the device, and it will not be affected by any computer virus.
How can I use my HyperFIDO Security Key with a mobile device?
To connect with a mobile device, you can use a USB-A to lightning adapter for iOS or a USB-A to USB-C adapter for Android.
Can I use the HyperFIDO Pro Security Key to log in to my Windows 10 PC?
FIDO2 features related to its usage for Windows PC and other Microsoft products are determined by Microsoft.
Currently, the HyperFIDO Pro can only be used to log in to workstations and computers using Windows 10 that are joined to a Microsoft Azure AD infrastructure. This will require more advanced setup; it’s recommended that you have some sysadmin experience before attempting to do so.
If your computer is not joined to an Azure AD infrastructure, you can't log in to your Windows PC using your security key. In addition, you must have a HyperFIDO Pro. Standard HyperFIDO U2F Security Keys do not have FIDO2 features and can't be used with Microsoft Azure AD to log in to a Windows PC.
I’m trying to use a HyperFIDO Security Key with a FIDO2-enabled service, but it’s not working. What might be wrong?
The standard HyperFIDO Security Key is only compatible with FIDO U2F protocols. Only the HyperFIDO Pro Security Key has FIDO2 features, which is different from FIDO U2F. Standard HyperFIDO U2F security keys will not be compatible with services using FIDO2.
Please purchase a HyperFIDO Pro to use FIDO2 features. If you find your FIDO U2F key is not working, please also double check if the service you’re using is compatible with FIDO U2F or if it’s FIDO2 only.
Will I need to upgrade my HyperFIDO key? How often will I have to do so?
The HyperFIDO and HyperFID Pro do not require regular upgrades currently to function. We recommend making sure your web browser is kept up to date.
Do I have to download any drivers or software to use HyperFIDO?
The FIDO2 and FIDO U2F features for the HyperFIDO Security Key does not require any third-party drivers or software to use. However, to program the HyperFIDO Pro’s HOTP features, you will need to download our HyperFIDO Pro HOTP Seed Generator and HyperFIDO Pro HOTP Programmer under Downloads.
How can I use the HOTP feature of the HyperFIDO Pro?
While the HyperFIDO Pro’s HOTP event-based one-time password feature is part of the device, it is unrelated to FIDO protocols and can be used like any other dynamic one-time password device. To program the HyperFIDO Pro’s HOTP features, you can download our HyperFIDO Pro HOTP Programmer.
Once the key has been set up and registered with an account, you can enter the OTP code into the OTP field for your account when signing in by pressing the button on the security key. Pressing the button will fill the text field with the OTP code automatically so that there’s no need to type it.
When I press the button on the HyperFIDO Pro in a text field, it displays 888888. What does this mean? Can I change this?
In addition to FIDO U2F and FIDO2 features, the HyperFIDO Pro also supports HOTP (HMAC event-based one-time password). If you are using any application which allows you to add a HOTP authentication device, you may program the keys using our programming tools, which can be downloaded here [/downloads]. Initially, if you press the key and receive the "888888" entry, that means this HOTP feature of the key has not been programmed yet.
If you only want to use the U2F and FIDO2 features, there’s no need to program the HOTP function. The default 888888 produced by the HOTP feature will not interfere when using your security key with FIDO U2F and FIDO2.
HyperOTP One-time Password Devices
What is OTP or a one-time password?
A one-time password (OTP) is a unique, dynamic password that changes based on either an event (like a button press) or a time value (from the clock on device or server). It's valid for only one login session, which effectively prevents password theft.
I want to use my phone or tablet. Do you have mobile OTP options?
Yes, our mobile OTP for iOS is available from iOS App Store, please go to your Apple App Store and search HSAuthenticator to download.
What are the security advantages of OTP tokens?
OTP tokens provide a unique dynamic password each time you sign in, which significantly decreases the risk of password theft. It also prevents the need to change your password frequently or to maintain long and complex passwords.
How do I use my HyperOTP token?
Simply press the button on the token to display your one-time password value, then enter the value to sign in to your OTP-enabled network services. Check with your service provider to see if your account has been linked with an OTP token.
What is a time drift?
A time drift is when the internal clock inside a time-based OTP token becomes out of sync with the server’s time window. When this happens, the codes generated by the token will no longer match what the server recognizes and authentication will fail. Many authentication servers will provide a feature to re-sync the OTP token so that there’s no need to replace it.
My OTP token has experienced a time drift. How can I re-sync it?
If you need to re-sync an OTP token, many OTP authentication servers will allow you to do so. A common method is to have the user enter two OTP codes in sequence. The server will then verify the token’s ownership, determine the time offset on the token, and store this information in order to calculate future passcodes. However, all authentication servers are different. Please contact your authentication server provider if you are not certain how to re-sync your OTP token.
What is the HyperOTP Edge? How is it diferent from a tradional OTP token?
The HyperOTP Edge is our innovative user-programmable OTP card that allows end users to program the secret key (seed) through NFC technology, unlike our traditional tokens which are pre-programmed during manufacturing. This is done by using a smart phone or tablet and our Edge Programmer app.
What is the benefit of using the HyperOTP Edge?
Because end users can program the Edge card themselves, any access using 2-factor authentication can be integrated with the Edge. In addition, the secret key (seed) is never shared with any third party, giving you enhanced security over the authentication process. Finally, the Edge is designed as a slim card than can slip easily in your wallet.
What is a "seed"? How do I add the "seed" to my token?
A seed, secret key, or seed value is a unique symmetric key associated with each OTP token and the server account linked with this token. This is a core element for all types of OTP tokens. For services similar to Google Authenticator, your seed value or "key code" will be generated and given to you by your online service provider.
What is PKI?
A public key infrastructure (PKI) is digital certificate-based security solution that provides online security for identification and authentication, as well as safe and secure digital transaction using digital signing and encryption/decryption. Each unique certificate generates a key pair containing a public key and a private key. Your public key can be used to verify a digital signature or shared to encrypt information, while a private key is used for decryption and digital signing. With our HyperPKI tokens, all operations are performed on board within a secure and closed environment to prevent data theft and malicious attacks.
Do I have to download any hardware driver or plugins to use HyperPKI USB token?
HyperPKI USB token does not require any additonal plugins or drivers to use.