NEO Supports U2F +OTP; Same Key at Same Time

Jerrod Chong

Jerrod Chong

2 minute read

Today, we whizz past another milestone. NEO keys built on our 3.3 firmware will support both U2F and OTP running on the same key at the same time. In fact, the configuration will support those two along with CCID.

We heard loud and clear during our launch of U2F support in October that a multi-function key that included the FIDO Alliance U2F protocol was on the must-have list for many Yubico customers.

We could not solve this immediately even though our multi-function capability was already resident on the NEO (as many of you theorized), but the FIDO client (browser side) needed the necessary plumbing in order to complete the experience.

With yesterday’s release of Version 39 of Google’s Chrome browser all the pieces are now in place.

If you have a NEO or NEO-n key (3.3 firmware) use the newly released NEO Manager for your platform (Windows, Mac, Linux) to configure the key.

What are the benefits of this multi-function key? Many people say they are using Gmail (U2F) and LastPass (OTP) or WordPress (OTP) to bolster security across their applications using just one YubiKey. You can also use the OpenPGP capabilities (CCID mode) in conjunction with U2F and OTP without needing to reconfigure the device for different protocols. And there are other combinations you can hear about from your peers on our Twitter feed @Yubico.

This is just one milestone we have been working on. There are others out there and they are just as interesting. Stay tuned. And enjoy the security.

Here are some relevant links to help get you started:

Talk to our teamTalk to our team

Share this article:
  • Digital security’s unique role in protecting our environmentAs sustainability expands to include social, economic, and technological challenges, cybersecurity has emerged as a top global threat – with cybercrime projected to cost $12 trillion this year. Stolen credentials and phishing account for 80% of breaches. At Yubico, making the world more secure is just part of how we care for the world around […]Read moreCSREarth DaySecure It ForwardSustainability
  • Breaking down Australia’s plan to combat AI-driven phishing scamsAcross Australia, cybercrime continues to be a major challenge impacting businesses, critical infrastructure and consumers alike. The use of AI by bad actors across the spectrum of cybercrime is on the rise, and as a result, credential phishing scams are becoming increasingly sophisticated. AI is effectively helping to lower the cost of phishing and increase […]Read moreAIAPACAustraliaphishing
  • 5 fast cybersecurity tips to clean up your digital lifeWith today being Identity Management Day, now is the perfect time to take stock of your online presence, update security settings, and ensure that your personal data remains protected from cyber threats like phishing. We’re also seeing increasing concerns of DeepSeek and other AI tools around data privacy making these kinds of attacks more successful […]Read morebest practices
  • Navigating the PCI DSS 4.0 transition and meeting compliance with phishing-resistant YubiKeysIn just a few days, on March 31, 2025, decision makers in industries that involve payment processing – including financial services, retail & hospitality and telecommunications – are tasked to finalize the transition to Payment Card Industry Data Security Standard (PCI DSS) 4.0. This deadline marks a critical juncture for all organizations handling payment card […]Read moreNISTPCI DSSPCI DSS 4.0