Yubico’s Android SDK Promises to Bolster Mobile App Security

Yubico recently made its Android SDK available to developers, who can now build support for YubiKey directly into their Android apps. The Android SDK joins the company’s iOS SDK, which means developers can create a consistent log-in experience across their mobile apps no matter the platform. 

Yubico specializes in mobile security. The company makes the YubiKey, a hardware USB key that’s plugged into devices such as mobile phones and laptops for authentication purposes. It’s popular with enterprise IT departments that want to maintain two-factor or cryptography-based security protocols. 

The company says the arrival of its Android SDK means Android mobile app developers can easily add support for YubiKey via YubiOTP, OATH, and PIV authentication over USB and NFC connections. It should support all developers, regardless of the authentication method preferred. 

Yubico suggests that the YubiKey enjoys several advantages over competing authentication tools, such as SMS or Google Authenticator. For example, an external, single-purpose device minimizes the risk from malware or phishing attacks. It’s faster than dealing with copying/pasting one-time codes and provides a higher level of security for high-risk actions, such as large account transfers. YubiKey is an ideal security tool for the financial and health industries.

The SDK itself is a multi-module library with components such as the YubiKey module, and the OATH, PIV, OTP, and MGMT modules. Yubico says the library also includes a demo application implemented in the Kotlin playground, which should serve as a complete example of all the features in the library.

The best way to get started is to pick up a YubiKey and load the YubiKit Demo App to learn the integration basics. You can find more information at Yubico’s GitHub repo and developer guide.

Go to Source
Author: <a href="">EricZeman</a>

By admin

I'm awesome! What else would I say about myself.