With the Nitrokey Passkey, you can reliably protect your accounts against phishing and password theft. The device allows super simple and secure passwordless login as well as two-factor authentication (2FA) using the modern WebAuthn or FIDO2 standard. This standard is supported by more and more websites and aims to replace traditional passwords. The device has a practical USB-A mini format and therefore fits on any key ring.
The Nitrokey Passkey is based on our modern Nitrokey 3, which was developed from scratch in Rust and is aimed at people and organizations who need an inexpensive security key for secure logins, but do not need the wide range of functions of the Nitrokey 3 (encryption, OpenPGP, passwords, OTP, PIV, Secure Element).
Trustworthy thanks to open source; quality made in Germany.
Use Cases
For private and corporate use - protection against mass surveillance and hackers
Passwordless Login
Forget your password for logging in and use the Nitrokey for passwordless login instead.Protect online accounts with two-factor authentication (2FA)
Nitrokey is your key to secure login to websites (e.g. Google, Facebook; Overview at www.dongleauth.com. With FIDO2, your accounts remain secure even if your password is stolen.Phishing-Protection
When using FIDO, the respective domain is automatically checked and users are effectively protected against phishing attacks.
For companies - protection against hackers and industrial espionage
Passwordless login to Windows 11 computers
Employees will in future be able to log on to their Microsoft Entra ID (Azure Active Directory) managed Windows 11 Pro computers without passwords. All that is needed only a Nitrokey is required.Passwordless login to your own enterprise systems
Replace your password policy, unauthorized password slips of paper and time-consuming password reset by passwordless login with the Nitrokey. Security and and acceptance through simplicity. We will be happy to advise you on integration.
For IT administrators and security experts - protecting critical infrastructure
SSecure server administration with SSH
Always have your SSH key securely in your Nitrokey at all times. Your key is PIN-protected and cannot be exported/stolen from the Nitrokey. stolen from the Nitrokey. This eliminates the insecure and inconvenient synchronization of key files on client systems.Protecting the Internet of Things (IoT) and own products
Protect your own hardware products by integrating the Nitrokey. Ideal for remote maintenance and to ensure product authenticity.
Features
FIDO U2F, FIDO2 for passwordless login
In terms of FIDO sets new standards in ease of use and thus achieves a high level of acceptance. high acceptance. FIDO reliably protects your accounts against password theft and against phishing.
Security Technology
The Nitrokey Passkey is based on a new type of security architecture:
The entire firmware is written in the memory-safe programming language Rust. This avoids potentially security-critical memory errors.
The firmware is based on the Trussed framework developed in Rust, which is designed for security-critical embedded systems. Trussed implements cryptographic operations, among other things. Of course the code is published as Open Source.
The hardware is based on the nRF52 microprocessor, which has numerous security functions, such as Secure Boot, ARM TrustZone, Physical Unclonable Functions (PUF).
- As with all Nitrokey developments, the Nitrokey Passkey is open source, so that the secure implementation can be examined by anyone.
Supported Systems and Interfaces
Operating systems: Windows, macOS, Linux, BSD, Android, iOS
Interfaces: FIDO2, FIDO U2F
Overview of some websites with two-factor authentication at www.dongleauth.com
Technical Details
Authentication standards: WebAuthentication (WebAuthn), CTAP2/FIDO2, CTAP1/FIDO U2F 1.2
Two-factor authentication and passwordless login for an unlimited number of accounts (FIDO U2F, FIDO2)
Signed firmware updates
With touch button
Activity indicator: four-color LED
Hardware interfaces: USB 1.1, type A
Conformity: FCC, CE, RoHS, WEEE, OSHwA