[aborsy]

Thanks for the info!

The construction quality of Yubikeys has been good in my experience.

I was just worried about the closed source proprietary firmware in a security product (including the random number generators, where issues were discovered in the past).

But Yubikeys are used in various companies and apparently in some branches of governments too, thus must have been vetted by their security teams (though there could be different lines of firmware or products for different clients. People say there is not much benefit to purchasing FIPS-compliant Yubikeys. Neglecting the approved algorithms and features, is the firmware the same as that in non-FIPS security keys?)