Ressources RSA / Fiches techniques

Série RSA iShield Key 2, optimisée par Swissbit

Authentification sécurisée et conforme

RSA ID Plus and the iShield Key 2 provide key benefits to organizations, including:

Enterprise-grade security and compliance: FIPS 140-3 certified cryptographic module, ensuring compliance with global security standards.
Protection de l'identité "Zero Trust: RSA ID Plus integrates a range of identity security capabilities—including contextual , risk-base d l'authentification , mobil e passkeys , et Vérification de l'identité—to advance ZTA and protect every component of your organization.
Une expérience sans faille sans mot de passe: With FIDO certification, the RSA iShield Key 2 supports a secure and frictionless passwordless journey across all your protected resources.
Contrôle et flexibilité: Manage and deploy passkeys with ease, tailored to the specific needs of organizations.
Secure self-service capabilities with ID Plus: End-users can easily register, update, and manage their credentials with ID Plus minimizing the burden on IT teams while enhancing the user experience.

Table des matières

One key. Nothing to steal. Nowhere for the attack to land

FIPS 140-3 Level 3

Every user. Every system

Accès sans mot de passe résistant à l'hameçonnage pour une maturité zéro confiance optimale

Spécifications de la série RSA iShield Key 2

L'authentificateur matériel le plus sûr au monde.

Dépassez la résistance au phishing avec la clé RSA iShield Key 2.

One key. Nothing to steal. Nowhere for the attack to land

RSA iShield Key 2 Series, powered by Swissbit, eliminates the credential entirely. Authentication happens on the device—a cryptographic proof of possession, not a secret that travels across a network. No shared secret. No replay attack surface. No way to phish what was never transmitted.

Integrated with RSA^® ID Plus, iShield delivers phishing-resistant, hardware-based multi-factor authentication (MFA) across your entire enterprise—protecting sensitive data and intellectual property with a solution built to adapt as threats evolve.

FIPS 140-3 Level 3. Not because it's required. Because Level 2 is no longer enough

The RSA iShield Key 2 Series is built on a FIPS 140-3 Level 3 certified cryptographic module (certificate 4679), supporting high-assurance authentication under the current NIST standards, and meets the NIST AAL3 hardware authenticator requirement. For enterprises operating under the most demanding compliance mandates, this isn’t a feature. It’s the baseline you’ve been asked to reach.

Every user. Every system. A hardware authenticator that doesn't expire

RSA iShield Key 2 Series delivers phishing-resistant, passwordless authentication with FIDO Passkey, smart card, and OATH OTP support across modern and legacy environments.

No hardware recall. No re-enrollment: Field-updatable firmware pushes security fixes and new features to deployed units. Your hardware investment doesn’t expire when standards evolve
300 stored passkeys: Enterprise-scale FIDO passkey capacity without re-registration overhead
Phishing-resistant by design. FIDO passkey and PIV smartcard authentication eliminate credential-based attacks. No shared secret to intercept, replay, or steal
Utilisation flexible : Modern FIDO passkey and PIV smart card authentication are available via USB or contactless NFC. OATH HOTP for legacy systems via USB
Versatile by design: Compatible with legacy and modern systems across financial services, healthcare, energy, and other highly regulated organizations
End-to-end identity protection: Integrates with RSA ID Plus, giving you full control over your IAM strategy
Built for the field: Fully molded, robust, and waterproof housing

Accès sans mot de passe résistant à l'hameçonnage pour une maturité zéro confiance optimale

Éliminez les menaces basées sur les informations d'identification tout en conduisant votre organisation vers les plus hauts niveaux de maturité Zero Trust. La série RSA iShield Key 2 fournit une authentification robuste, résistante au phishing et sans mot de passe qui garantit que seuls les utilisateurs autorisés et de confiance accèdent aux systèmes critiques, aidant ainsi les entreprises à atteindre leurs objectifs de confiance zéro.

Spécifications de la série RSA iShield Key 2

Normes / caractéristiques prises en charge

FIDO2/CTAP2.1,/WebAuthn, FIDO Universal 2nd Factor (U2F) / CTAP1, OATH HOTP OTP (Event-based),Smartcard (PIV-compatible), USB 2.

OpenSC-compatible for non-management PIV operations, Swissbit provided iShield-specific OpenSC mini driver (LSA signed by Microsoft) for PIV management.

FIDO2/CTAP2.1,/WebAuthn, FIDO Universal 2nd Factor (U2F) / CTAP1, OATH HOTP OTP (Event-based),Smartcard (PIV-compatible), USB 2.

OpenSC-compatible for non-management PIV operations, Swissbit provided iShield-specific OpenSC mini driver (LSA signed by Microsoft) for PIV management.

Détails mécaniques

USB-A: 65 x 16 x 5.2 mm, 5g
USB-C: 60 x 16 x 5.2 mm, 5g

Facteur de forme / type d'appareil

USB 2 Composite Device: HID FIDO, CCID Smartcard, HID Keyboard, USB-A or USB-C, VID: 1370, PID: 0911

Near Field Communication (NFC) interface and multi-color LED

USB 2 Composite Device: HID FIDO, CCID Smartcard, HID Keyboard, USB-A or USB-C, VID: 1370, PID: 0911

Near Field Communication (NFC) interface and multi-color LED

Certifications

FIPS 140-3 certified secure element (certificate 4679) FIDO Universal 2nd Factor (U2F) Level 1, FIDO2 CTAP2.1 Level 2

FIPS 140-3 certified secure element (certificate 4679) FIDO Universal 2nd Factor (U2F) Level 1, FIDO2 CTAP2.1 Level 2/p>

Temperature range

Storage: -25°C to 85°C
Operational: -25°C to 70°C