Cloudflare simplifies accessing hardware security keys for customers

Cloudflare, Inc., a security, performance, and reliability company that is helping to build a better Internet, has announced a new offering that will make physical security keys the most accessible and cost-effective solution for customers looking to better secure their business and employees. Yubico’s security keys, the leading hardware security keys and the most secure form of phishing-resistant multi-factor authentication (MFA), will be available to Cloudflare customers at an exclusive ‘good for the Internet’ price.

A Zero Trust security model implies that no one, whether inside or outside of a corporate network, is trusted by default. As a result, everyone attempting to gain access to resources on that organization’s network must provide verification, including their location, familiar devices, and passwords. Today, hardware security keys provide an additional layer of protection and a phishing-resistant method of MFA.

Customers of Cloudflare will be able to claim an offer for Yubico’s Security Key Series at drastically reduced prices – as low as $10 – via their Cloudflare dashboard. Larger organizations that use Cloudflare and purchase a multi-year YubiEnterprise Subscription for YubiKeys will receive a 50% discount on the first year of a three-year or longer subscription. This collaboration aims to make acquiring, activating, and authenticating security keys simple and seamless for organizations of all sizes.

Due to the company’s use of Cloudflare Zero Trust paired with YubiKeys, Cloudflare prevented a breach by an SMS phishing attack that targeted more than 130 companies in July. Physical security keys fortify the barrier against attacks and work in tandem with other security measures such as DNS filtering, browser isolation, cloud email security, and others, where an attacker would need to compromise every signal.

“We’re always asking ourselves how we can do even more to provide the best possible security to our customers and the Internet-at-large. With phishing attacks on the rise, this means helping to democratize additional security measures to complement the Cloudflare Zero Trust experience. We experienced this first hand, and wanted to make implementing hardware security keys a no-brainer for any organization,” said Dane Knecht, SVP, Emerging Technology and Incubation at Cloudflare.

“Working with Yubico is just another way we’re trying to make it as seamless as possible to arm our customers with the best Zero Trust security strategy. Being a Cloudflare Zero Trust customer introduces an easy, fast and affordable way to implement security keys in your organization, and all part of our greater mission to help build a better Internet.”

With Yubico, Cloudflare is ensuring physical security keys are:

• Economical: Rolling out security keys can be difficult for companies with smaller security teams, or those that have just begun using two-factor authentication. By offering security keys at the most affordable rate, this offer makes the keys less of a financial burden on small companies.
• Accessible: Now Cloudflare customers can order Security Key Series, supporting FIDO-based authentication, directly through their dashboard. The YubiKey 5 Series, available through YubiEnterprise Subscription, supports multiple authentication protocols, from legacy applications to modern FIDO-based apps and services. The exclusive ‘good for the Internet’ pricing, helps to introduce the value and functionality of hardware keys to Cloudflare customers.
• Simple to use: Setting up security keys is easy for participating Cloudflare customers. For Administrators, Cloudflare Zero Trust makes it easy to use your security keys with any Identity Provider (IdP) and integrates both the keys and IdP into a comprehensive Zero Trust solution. For employees, a simple guided prompt makes the action of touching a security key for authentication seamless. Security keys work across all devices, operating systems, and areas within an organization.

“Yubico pioneered the modern security key, the YubiKey, and continues to set the industry standard, protecting enterprise customers and consumers from security threats,” said Stina Ehrenvard, CEO and co-founder, Yubico. “Today’s attacks require modern MFA. Working with Cloudflare will help get more Security Keys and YubiKeys into the hands of their customers, to deliver on the combination of phishing-resistant MFA and provide peace of mind.”

This special promotion will be available to Cloudflare customers until December 31, 2022.