It’s a security key meant to replace passwords with passkeys, but it does some other things as well.
The main thing which makes them secure is no one can export, read, copy the keys that are inside it, even if the PC is infected.
I also store a GPG key to encrypt / decrypt some sensitive stuff and a SSH key.
You can also use them as OTP replacement instead of using apps like google authenticator, aegis or whatever your choice is. It also makes it more secure. Though I don’t think I will be doing that.
Main thing I bought it was for GPG and to secure my password manager. The good thing is because you have a security key your PIN can be significantly shorter than a password managers password and you don’t sacrifice security. Nitrokey, for example, allows 8 tries to enter the FIDO2 (passkey) PIN. After 8 incorrect attempts it will block it and you will need to do a reset. Also people have to physically have your security key to even enter the PIN. So I simply have a 6 digit PIN code.
The questions everybody’s looking for in the comments: What’s this? Why aren’t you using a password?
It’s a security key meant to replace passwords with passkeys, but it does some other things as well.
The main thing which makes them secure is no one can export, read, copy the keys that are inside it, even if the PC is infected.
I also store a GPG key to encrypt / decrypt some sensitive stuff and a SSH key.
You can also use them as OTP replacement instead of using apps like google authenticator, aegis or whatever your choice is. It also makes it more secure. Though I don’t think I will be doing that.
Main thing I bought it was for GPG and to secure my password manager. The good thing is because you have a security key your PIN can be significantly shorter than a password managers password and you don’t sacrifice security. Nitrokey, for example, allows 8 tries to enter the FIDO2 (passkey) PIN. After 8 incorrect attempts it will block it and you will need to do a reset. Also people have to physically have your security key to even enter the PIN. So I simply have a 6 digit PIN code.