OpenAI Mandates Passkeys for TAC Program, Yubico Steps In — Yubico AB

Event summary

OpenAI mandates passkeys for Trusted Access for Cyber (TAC) program users starting June 1, 2026.
Yubico's hardware-backed passkeys, like YubiKeys, will be required for Advanced Account Security (AAS).
OpenAI's move shifts industry from probabilistic security to cryptographic certainty.
Yubico highlights phishing-resistant authentication and zero-knowledge recovery as key benefits.

The big picture

OpenAI's mandate signals a broader industry shift towards hardware-backed security for AI access, particularly for high-consequence applications. This move underscores the growing recognition that traditional password-based security is insufficient for protecting sensitive AI systems and autonomous agents. Yubico's involvement highlights the strategic importance of phishing-resistant authentication in securing the AI frontier.

What we're watching

Adoption Pace: How quickly other AI developers will follow OpenAI's lead in mandating passkeys.
Enterprise Integration: Whether organizations can seamlessly integrate Yubico's solutions into their SSO workflows.
Security Standards: The extent to which hardware-backed passkeys become the industry norm for high-consequence AI access.

🍪 We use cookies

Cookie Preferences

🔒 Necessary Cookies

📊 Analytics Cookies

🎯 Marketing Cookies