NFC må aktiveres
Nøkkelbrikker fra Yubico sendes ut fra fabrikk med NFC-funksjonaliteten slått av. Yubico har meldt at dette er et sikkerhetstiltak under transport fra fabrikk ut til virksomhet.
For å klargjøre NFC må nøkkelbrikken stå minimum 3 sekunder i en USB-port før brikken kan benytte trådløs kommunikasjon med NFC.
Det er dessverre ikke mulig å se visuelt hvilken versjon brikken har, da de ikke er merket på noen måte. Man må bruke Yubikey Manager for å sjekke (se under).
Bakgrunn: Restricted NFC
Følgende er hentet fra Yubicos tekniske dokumentasjon: https://docs.yubico.com/hardware/yubikey/yk-tech-manual/5.7-firmware-specifics.html#restricted-nfc
Restricted NFC mode prevents wireless device manipulation before a YubiKey NFC with the 5.7 firmware is taken out of its blister pack or other packaging such as a tray. To ensure that these keys cannot be tampered with during shipping, this mode is enabled by default on new NFC keys with the 5.7 firmware.
When these keys are taken out of their packaging, the only permitted action via the NFC connection is reading the URL configured by Yubico on the NDEF tag set by Yubico. Because both major mobile OSs read NDEF tags and open URLs by default, users immediately learn how to disable Restricted NFC mode. The NDEF tag is set to https://www.yubico.com/getting-started/.
When tapped against a mobile device, a YubiKey 5.7 NFC will cause the browser to open to the configured URL with the instructions for enabling full NFC operation. The end user is instructed to plug the key into USB power such as a USB charger or computer USB port for 3 seconds. This action is sufficient to disable Restricted NFC mode. The user can re-enable the restriction as often as they desire using ykman.