Protocols and Applications

The YubiKey 5 Series provides applications for FIDO2, OATH, OpenPGP, OTP, Smart Card (PIV), and U2F. The applications are all separate from each other, with separate storage for keys and credentials.

• FIDO
• Smart Card (PIV Compatible)
• OATH
• OpenPGP
• OTP
• YubiHSM Auth

For information on managing all these applications, see Tools and Troubleshooting.

Note that the OTP and OATH categories overlap. Technically, there are three true OTPs:

• Yubico OTP (defined by Yubico)

• OATH-HOTP (standard RFC4226)

  • We support the Yubico OTP and OATH-HOTP directly on the touch-triggered OTP function on the YubiKey.

• OATH-TOTP (standard RFC6238)

  • We support OATH-HOTP and OATH-TOTP directly on the OATH function on the YubiKey (usually called OATH and used with Yubico Authenticator).
  • We support a static password and Challenge-Response with Touch-triggered OTP. Challenge-Response can also be used with software (such as Yubico Authenticator) to act as a single OATH-TOTP credential.

All three of these OTPs are described in more detail below; see OATH and OTP.

---