Case Study: US Department of Defense Contractor achieves secure, self-controlled OTP authentication and major support-cost savings with Yubico YubiKeys and YubiHSM

US Department of Defense Contractor - Customer Case Study

A U.S. Department of Defense contractor needed a more secure one‑time‑password (OTP) solution after the 2012 RSA SecurID breach exposed the risks of vendor‑held token secrets. The contractor’s auditors required that token secrets never be stored by manufacturers or third parties, that tokens be programmable on‑site, that server software be fully transparent, and that secrets be protected across multiple servers cost‑efficiently.

Yubico delivered YubiKeys, YubiHSM and open‑source server software with best‑practice security processes, the only vendor to meet all requirements. The deployment provided the required control and transparency, lowered hardware, software and support costs, and reduced support staffing—cutting five support roles down to one.

US Department of Defense Contractor