I am once again asking: Yubikey 5 or Security key
I have seen this type of question, but I don't really understand how the technology works, so I want some clarification. Im OK with buying the yk5 if its what I need, but since im planning on buying 3 (one for me, one in safe, one in some remote location), so If I can save my money, I'll do that.
My main goal: Take my ssh keys and put them on the yk (Or create new ones on the key), so that not only do I not have to worry about my keys being stolen (so long as the yk is unplugged its inaccessible to hackers), but I also want something portable. If I don't have my laptop on hand, but I do have access to a linux PC (that I can be reasonably sure is not compromised with malware), then I can plug my yk into that pc and use ssh on that PC, preferably without needing to modify that PC at all. Then I can unplug the key and go about my business.
I like the way SIM cards work, where the Secret key is on the security chip and never ever leaves the device, and instead you can use the device to encrypt and decrypt traffic without ever touching the secret key.
From what Ive seen on YT this can be done with FIDO2, but talking on discord It seems like I need PIV? Im confused because I dont know how these technologies interact. Hopefully this isnt just gibberish :P