YubiKey for Retail and Hospitality
Phishing-resistant MFA is key to preventing account takeovers, securing shared devices, and protecting confidential data
Stop account takeovers and improve the customer experience
The high availability of sensitive data, including payment card information (PCI) and personal information of employees and customers, makes retail and hospitality companies a lucrative target for cyberattacks such as phishing, ransomware and data theft.
A key component of a strong zero-trust cybersecurity approach is multi-factor authentication (MFA), but not all forms are created equal in terms of security or usability. Retail and hospitality industries are consumer- and customer-centric, and the MFA solution should enable a frictionless experience.
Traditional authentication methods such as usernames and passwords can be easily compromised and increase IT helpdesk costs associated with password resets. Mobile authentication is highly vulnerable to attacks and leads to MFA fatigue, while it cannot be used in certain environments.
Yubico offers the YubiKey for the most secure phishing-resistant two-factor, multi-factor, and passwordless authentication, helping retail and hospitality businesses prevent phishing attacks, ransomware, and account takeovers while protecting sensitive customer and financial data and ensuring regulatory compliance.
The benefits of cybersecurity for retail and hospitality are within reach with the YubiKey.
Secure access to systems, applications and data while modernizing device security
YubiKeys ensure that only authorized users have access to personal data and critical systems, while securing access to POS terminals, shared workspaces/devices, and RFID readers.
With YubiKeys, you can even secure customer accounts and loyalty programs. They protect everyone, everywhere. YubiKeys are also easily reprogrammable, making them suitable for seasonal and temporary workers, and they enable self-service password resets, drastically reducing IT help desk costs.
Protecting call center agents and other environments with restricted access to mobile devices
Mobility-restricted environments have historically been a problem for mobile-based MFA methods that use SMS, push notifications, or apps. The YubiKey provides simple and secure authentication when there is no cellular connection or when mobile devices are restricted.
YubiKeys are ideal for users who cannot or do not want to use mobile authentication and help you achieve 100% MFA coverage and meet the MFA requirements of your cyber insurance.
Compliance with industry regulations and authentication standards
The Payment Card Industry Data Security Standard (PCI DSS) v4.0, Sections 3 and 8, require the use of strong MFA for all accounts that have access to cardholder data. Furthermore , Requirement 12 of PCI DSS v4.0 outlines the need for a well-adopted and documented information security policy and program that includes user training. Strong customer authentication is also a key provision of the Payment Services Directive (PSD) 2, which aims to make online payments more secure and reduce fraud.
YubiKeys enable strong user verification and ensure organizations comply with existing and emerging regulations such as PCI DSS, the EU Payment Services Directive 2 (PSD2), GDPR, and more. YubiKeys are also FIDO2/WebAuthn compliant, simplifying workflows and increasing productivity. They protect against the most common phishing attacks and enable simple plug-and-play for non-technical users.
Protect your entire supply chain and eliminate security gaps
YubiKeys provides secure, convenient, and scalable security, making it easy for you and your suppliers to deploy strong authentication. With Yubico's solutions and flexible YubiKeys procurement and deployment options, you can achieve an estimated 203% ROI within three years and a 75% reduction in password-related help desk support tickets by year three.
User authentication is critical along the supply chain, but so is authentication between systems and machines, which is ensured by the world's smallest hardware security module (HSM), the YubiHSM2 .
