FIDO2 Security Keys - PIN+ Series
Unique on the market: FIDO2 security keys with distinctive, robust PIN complexity to prevent easily guessable PINs like '1234' or '111111'. In addition to solving the PIN complexity problem, our PIN+ series will also have additional features, such as ed25519_sk support and a serial number printed on the casing to simplify inventory management.
Even more secure than existing FIPS-compliant security keys
If you're looking for a security key that offers the highest level of security and ease of use, the Token2 FIDO2 PIN+ is the key for you. With its advanced features and firmware-level PIN complexity enforcement, the Token2 FIDO2 PIN+ provides the most secure authentication experience possible.
Classic hardware tokens
We have designed and prototyped several models of OATH compliant hardware tokens . We currently have agreements with a number of different factories that produce the equipment based on our design and algorithms. Our classic hardware tokens can be used in many systems supporting standard TOTP protocol, including WordPress, Azure MFA Server, WebUntis and many others. Token2 is listed by Microsoft as a recommended TOTP hardware token supplier for Azure MFA.
Independent Compliance Check
RFC6238 compliance confirmed by CertX, the first swiss accredited certification body for product certification in the scope of industrial cybersecurity and functional safety. TOKEN2 C202 TOTP hardware token - Independent Compliance Check report by CertX
Programmable hardware tokens
Token2 programmable card or keyfob tokens are "drop-in" replacement of OTP mobile apps (such as Google Authenticator or similar). They support authentication backends requiring TOTP tokens without the possibility of specifying the shared secret keys (i.e. keys are generated on server-side only) and are compatible with services such as Google, Facebook, Microsoft, Amazon, etc. We are the inventors and manufacturers of the world's first multi-profile programmable TOTP hardware tokens, such as Molto-1 and Molto-2
Before buying, you can test integration and compatibility with your systems using our virtual token, an HTML5 app that fully emulates our classic TOTP tokens. This tool can also be used as a cross-platform TOTP application (for testing purposes only). Just launch the tool with your base32 seed value set as the "key" argument of the URL. The full source code of this tool is available under our GitHub repository
TOTPRadius virtual appliance
TOTPRadius is a 2FA authentication server deployed as a virtual appliance and designed to run on Hyper-V or VMWare hypervisors. This complements the variety of products offered by Token2, any hardware token sold by Token2 can be backed by TOTPRadius as the authentication service. Newer versions of TOTPRadius allow organizing access to corporate VPN using FIDO Security keys (legacy U2F or FIDO2) both via 2FA and Passwordless method. TOTPRadius is free for 5 users and more licenses can be purchased online if needed. Token2 TOTPRadius provides the RADIUS RFC-2865 for TOTP RFC-6238 based authentication. With TOTPRadius you can integrate a large variety of third-party products and systems with multi-factor authentication. A number of enterprise products and services like VPNs (including Meraki CVPN and Fortinet VPN), Citrix XenApp/XenDesktop, VMWare View, and many others provide support for RADIUS servers to validate the second factor of user authentications. TOTPRadius features many innovative approaches to multifactor authentication, such as self-service enrollment and FIDO security keys-based L2TP VPN access using VPN Portal. To ensure the security of the VPN Portal is at the highest level, we have contracted an independent security company, SySS GmbH , which has conducted the penetration testing and produced a security certificate available below. The TOTPRadius VPN Portal component is currently labeled as "Certified Website - Approved Security" by SySS Gmbh.
Commercial register entry
Registered company name: TOKEN2 Sàrl
Inscrit au RC de Genève: Oui
Identifiant REG: 1-1NBZJB
Commercial register number: CHE-407.231.229
VAT number: CHE-407.231.229 TVA
Nature juridique: Société à responsabilité limitée (Sàrl)
Secteur d'activité (NOGA): 620100 - Programmation & informatique
Unité locale REE: 12981731
La Voie-Creuse 3B, 1202 Genève
Certifications & Compliance
We operate in compliance with the leading industry standards and certifications in cybersecurity, product quality, safety, and sustainability. Furthermore, a number of our products have undergone independent security assessment and certification, ensuring that they meet the highest security standards. These certifications demonstrate our commitment to delivering products that not only excel in quality and performance but also adhere to stringent security protocols, providing our customers with peace of mind regarding the safety and reliability of our offerings..
Resellers & Distributors
Direct B2B and B2C are our main channels of distribution, but we also leverage distributors and resellers as needed to extend our reach and provide localized support.
Security of the data and tools
We have been getting questions about the security surrounding the shared secret key hashes (seeds) of our hardware tokens. On this page, we describe how this data is secured, operated, stored, and destroyed.
Many of the tools we created to manage our devices have Python versions available. This allows experts and developers to examine the source code, reducing the risk of hidden vulnerabilities or malicious elements.
AGOV- Authentication Service of Swiss Authorities
AGOV, a project of the Swiss Digital Administration, maintains its list of successfully tested FIDO security keys, and Token2 has been included in the list. Token2 is recognized as a provider of FIDO security keys that meet the standards and requirements for secure authentication with AGOV.
Subscribe to our mailing list
Want to keep up-to-date with the latest Token2 news, projects and events? Join our mailing list!