How Many Passkeys Can a YubiKey Hold?
Vincent
Created: August 22, 2024
Updated: September 10, 2024
How Many Passkeys Can a YubiKey Hold?#
A YubiKey 5 Series with firmware 5.7+ can hold up to 100 discoverable credentials (AKA hardware-bound passkeys). Other YubiKey models and configurations might only store up to 32 passkeys. These passkeys are used for secure passwordless authentication via WebAuthn.
- The latest gneeration of YubiKeys can store up to 100 passkeys (discoverable credentials).
- Storage capacity depends on the YubiKey model and configuration.
- Proper management of YubiKey passkeys ensures optimal security.
Understanding YubiKey Passkey Storage#
YubiKeys are hardware security keys used to authenticate users securely via protocols like WebAuthn. They are increasingly popular as part of a move towards passwordless authentication, providing a secure, phishing-resistant alternative to traditional passwords.
Discoverable Credentials (Passkeys)#
Discoverable credentials (previously resident keys), commonly referred to as passkeys, are stored directly on the YubiKey. These credentials are vital for passwordless authentication, allowing the user to authenticate without needing to input a password. Instead, they use the stored passkey in conjunction with their YubiKey.
-
Storage Capacity: The newest generation of YubiKeys can store up to 100 discoverable credentials. This limit is largely due to the YubiKey's internal memory and security architecture, which prioritizes security over storage capacity. Once the limit is reached, you cannot store additional passkeys without deleting existing ones.
-
YubiKey Models: The storage capacity can vary slightly depending on the YubiKey model and the firmware it runs. Higher-end models may offer more flexibility and additional features.
-
Usage Considerations: For most users, 100 passkeys are more than sufficient, as they typically correspond to 100 different services or accounts. However, if a user manages more than 100 accounts requiring passkey authentication, they may need to use multiple YubiKeys or selectively choose which accounts to secure with a passkey. We expect the need for larger YubiKeys to grow pretty quick once more and more services roll out passkeys.
Best Practices for Managing Passkeys on YubiKeys#
Proper management of your passkeys on YubiKeys ensures that you maximize the device's utility while maintaining security:
- Regular Updates: Keep your YubiKey firmware updated to benefit from the latest security features and optimizations.
- Multiple YubiKeys: Consider using multiple YubiKeys if you manage a large number of accounts requiring passkeys. This approach provides redundancy and additional storage capacity.
Share this article
Enjoyed this read?
🤝 Join our Passkeys Community
Share passkeys implementation tips and get support to free the world from passwords.
🚀 Subscribe to Substack
Get the latest news, strategies, and insights about passkeys sent straight to your inbox.
We provide UI components, SDKs and guides to help you add passkeys to your app in <1 hour
