Buy options
20.71 GBPModel Number | T2F2-PIN+/Dual Release3 |
---|---|
Form-factor | Plastic case USB-A, USB-C, NFC |
Functions | PIN+ FIDO2.1 WebAuthN+CTAP OpenPGP |
Dimensions | 30×18×6 (without USB connectors) mm |
Weight | 10 gr |
Programmable | |
Storage |
passkeys: 300 HOTP: 1 TOTP: 50 |
Product ID | T2-108 |
Azure Passwordless | fully compatible | |
---|---|---|
Google Account | fully compatible | |
ISDecisions UserLock 11.0 or newer | fully compatible | |
Stripe Account | fully compatible | |
Facebook Account | fully compatible | |
GitHub Account | fully compatible | |
🇨🇭 AGOV- Authentication of Swiss Authorities | fully compatible | |
Not listed here |
Write us |
|
If the system you are using is not included in the compatibility list, it does not necessarily indicate incompatibility. We encourage you to refer to our integration guides page or get in touch with us for more information. |
Please check product and platform compatibility before placing an order
All pictures shown are for illustration purpose only. Actual product may slightly vary due to product enhancement or other reasons.
FIDO Key Usage
FIDO security keys with USB ports (except the mini models) are not designed to be kept plugged in while storing your main device, such as a laptop or smartphone, away. For optimal security and longevity, unplug the key when not in use. Please note that no warranty is provided for defects or damage caused by improper usage, such as leaving the key plugged in while storing the device.PIN+ Firmware
This security key runs our PIN+ firmware and is the most secure FIDO2 security key on the market. It is open-source and has undergone a public third-party security audit.Keyring Notice
This USB key features a smaller keyring hole, designed for optimal compactness and convenience. To ensure proper use, please adhere to the following guidelines:- Use keyrings ≤ 2 mm thick.
- With proper rings, the USB key tolerates 80-100 N (Newtons) of force.
- For higher forces, consider using a silicone case.
PIN+ Dual Release3 - FIDO2.1 Key with OpenPGP and OTP and Dual USB Ports
The T2F2-PIN+/Dual Release3 is an NFC-enabled FIDO2 Security key with both USB-A and USB-TypeC ports, featuring PIN complexity at the firmware level. Having an NFC chip onboard allows using this FIDO2 key with modern iPhones natively, directly in the browser (starting from iOS 13.3) as well as Android devices with NFC. This model features a capacitive sensor-type integrated touch-button and is only 6 mm thick. With Release 3 of our PIN+ Series, you can now store up to 300 passkeys (also known as resident keys or discoverable credentials) on a single device.
What's New in Release3
- OpenPGP Applet: Release3 introduces an OpenPGP applet, adding compatibility with OpenPGP software for secure digital signing, encryption, and authentication.
- iOS Management via USB-C: For the first time, users can manage passkeys and set PINs on iOS via USB-C, enabling full management on devices like modern iPads that lack NFC functionality. Previous versions and all competitor keys allow only authentication over USB under iOS, but not key management.
FIDO security keys are small USB dongles that enable secure login to websites and applications supporting FIDO2 WebAuthn and classic FIDO (U2F) standards.
Token2 T2F2-PIN+ security key combines hardware-based authentication, public-key cryptography, TOTP/HOTP, U2F, and FIDO2 protocols to protect your accounts. This type of security device provides the highest level of multifactor authentication for user accounts with Twitter, Facebook, Gmail, GitHub, Dropbox, Dashlane, Salesforce, Duo, Centrify, and hundreds more HOTP, U2F, and FIDO2-compatible services. No additional tools or applications are required, and the login process is simple and reliable. Just insert the Security Key into a USB slot and authenticate with a simple touch. The security key does not require a battery nor network connectivity - it is always on and accessible.
Specifications
Model Number | Token2 T2F2-PIN+ |
Button | 2 x capacitive interface buttons (one on each side) |
Functions | FIDO U2F + FIDO2.1 WebAuthn + HOTP (HID) + TOTP (with a companion app) |
Embedded security algorithm | ECDSA, SHA256, AES, HMAC, ECDH |
OpenPGP | RSA2048 ECC: secp256r1, secp256k1,secp384r1, secp521r1 User Interaction Flags (UIF): not supported Curve25519: not supported |
SSH with FIDO Support | ecdsa-sk & ed25519-sk |
Interface type | NFC, USB-A and USB-TypeC |
Firmware | FIDO 2.1 Token2 PIN complexity enforcement |
Maximum FIDO2.1 Resident keys | 300 |
Maximum OTP profiles | 50 TOTP/HOTP via the app + 1 HOTP via HID |
Lifetime | At least 10 years |
Programming cycles | 100,000 times |
Communication protocol | CTAP2, HID, NFC |
Working voltage | 5.0V DC |
Input Current | 35mA |
Power | 0.18W |
Working temperature | -10℃ - 50℃ |
Dimensions | 42.1 mm x 17 mm x 6 mm |
Storage temperature | -20℃ - 70℃ |
Enhanced Water Resistance
This model features a specialized PCB (Printed Circuit Board) coating for enhanced water resistance. This protective coating ensures durability against water ingress, safeguarding your data in any environment.TOTP Feature
T2F2-PIN+ Security key can securely store the secrets for your TOTP profiles but requires a companion app (available for Android, iPhone, and Windows, as well as a cross-platform Python tool allowing it to run under Linux, macOS, and similar systems) to generate the OTPs.
Integration Guides
Native support of NFC FIDO2 Keys in iPhone Safari
Using Your T2F2 Security Key with Google
Passwordless authentication in Azure AD with Token2 FIDO2 keys
Using FIDO2 USB keys under Linux
Blog
03-12-2024
Automated FIDO2 Registration for Entra ID
At Token2, we work to provide organizations with easy-to-use tools. We're excited to share our new manual on FIDO2 Key Automated Registration for Entra ID.
25-11-2024
Shipping to Ukraine: Our New Partnership with Nova Post
After encountering issues with other carriers, we partnered with Nova Poshta for deliveries to Ukraine. Successful test shipments now allow us to proudly offer faster, more reliable delivery with better tracking and service for our Ukrainian customers.
22-11-2024
Self-Service for Hardware OATH Tokens in Entra ID with SHA256 Support
A recent update to Microsoft Entra ID now allows end-users to self-service hardware OATH tokens, removing the need for administrators to manually activate them. Admins can upload hardware tokens into a "public repository" via Graph API, allowing users to assign tokens to their accounts independently.