YubiKey Support on Android

This article provides technical information on security protocol support on Android. To set up your YubiKey with your Android phone, please refer to service-specific instructions provided via the Works With YubiKey Catalog. As an example, Google's instructions for using YubiKeys with Android can be found here.

If you are interested in learning more about the security protocols listed below, consider looking at our Cybersecurity Glossary.

Yubico cannot guarantee proper functionality of our products when used with phones that are running Android versions not supported by the phone's manufacturer. This includes custom ROMs like LineageOS, Oxygen and AOSP, as well as versions that have fallen out of support by the manufacturer.

Native Support

Natively, the following features of the YubiKey are supported on Android over USB.

  • OTP* (Yubico OTP, Static Password, and OATH-HOTP)
  • U2F (requires Google Authenticator to be installed)

The following features are not supported natively by Android over USB.

  • HMAC-SHA1 Challenge-Response*
  • PIV
  • OpenPGP**

*Native OTP support excludes HMAC-SHA1 Challenge-Response credentials

**The YubiKey's OpenPGP feature can be used over USB or NFC with third-party application OpenKeyChain app, which is available on Google Play

Extended Support via SDK

Android apps can add support for the following YubiKey features over both USB and NFC by incorporating our SDK for Android.

  • OTP (includes Yubico OTP, Static Password, and OATH-HOTP)
  • OATH (Yubico Authenticator)
  • PIV