Similar in shape to the TrustKey T110, the TrustKey G320 is the sibling that supports biometric authentication. A stubby USB-C connector sticks off the end, and the biometric sensor is on top of the device, replacing the usual capacitive touch sensor. Same design with a status led light above the biometric sensor. Overall, the key feels good and of a high-quality build.
TrustKey was one of the first vendors to have a biometric FIDO2 security key on the market.
The only notable downside – the key is of a clam-shell design which one could theorize may not be as durable long-term compared to injection molded.
When I purchased the G320H, it was available on Amazon, but at the time of posting this, I only can find it directly available from TrustKey.
Available Features And Management
The T110 supports both FIDO2 and FIDO U2F. With the TrustKey Key Manager software, it also supports TOTP and HOTP.
FIPS 140 Availability
This is one of the two keys tested that is FIDO Certified Authenticator Level 2 and is FIPS 140-2 compliant.
Enrollment And Usage
The key enrolled in Azure AD without issue.
The key worked consistently after enrollment without issue.
The key was factory reset without issue.