Token2 PIN+ Release 3
PIN+ with PIV smart card and OpenPGP on top. Release 3.3 is the current top end Token2 key.
Token2 PIN+ Release 3
CTAP 2.1
Supports CTAP 2.1, including features like enforced PIN complexity, credBlob, largeBlob, and alwaysUv
More InfoEnterprise Attestation
Reveals a unique attestation certificate during FIDO registration so identity providers can tie a credential to a specific device
More Info
Resident Cryptographic Keys
Supports WebAuthn discoverable resident credentials, the building block of passkeys
More Info
Resident ECDSA keys
Supports ECDSA discoverable keys
Resident ED25519 keys
Supports ED25519 discoverable keys
Token2’s PIN+ Release 3 is the current generation of the PIN+ line, replacing the now legacy Release 2. It keeps the FIDO2 stack and on device PIN complexity enforcement, raises discoverable credential capacity to around 300 per key, and adds PIV smart card support. The Release 3.3 firmware further adds OpenPGP smart card support, putting the key in the same protocol space as a Yubikey 5 at a noticeably lower price.
Token2 ships PIN+ Release 3 in many form factors:
- USB-A and USB-A nonbranded variants on Release 3.3.
- USB-C on Release 3.3.
- Mini-A on Release 3.2 and Mini-C on Release 3.1, low profile USB nub variants.
- Dual port (USB-A plus USB-C in one body, no NFC) on Release 3.3.
- Dual Octo, the enterprise unbranded attestation variant on Release 3.3.
- NFC Card, a credit card form factor with NFC, on Release 3.3.
- PIN+Bio3, a fingerprint variant. See PIN+Bio3.
Release 3.4 is in development and adds NFC support to PIV operations through Secure Messaging. Release 3.5 and 3.6 are expected to add CTAP 2.3.
For the firmware feature differences across releases, Token2 maintains a public matrix.