This master's thesis aims to evaluate and compare the usability and security of two Hardware Security Modules YubiKey and Secure Enclave technologies in protecting against cyber-attacks. The focus is on examining their performance in various use cases across different services and exploring their authentication procedures. These HSMs provide strong security capabilities, including secure key storage, cryptographic operations, and secure authentica-tion mechanisms. Evaluating the security features of these HSMs against common attack vectors, such as phishing, credential theft, and physical tampering, is crucial to understanding their effectiveness.

The aim is to compare their authentication speeds and assess their effec-tiveness against cyber-attacks. Key investigation questions include how HSMs support au-thentication processes and how their authentication methods can be effectively compared.

The research is structured around practical use cases to assess and compare the performance of YubiKey and Secure Enclave. A formal approach ensured that both HSMs were tested under identical conditions. Each use case is designed to highlight the capabilities and perfor-mance of YubiKey and Secure Enclave in securing systems and applications through cryp-tographic operations and authentication. Across multiple trials for services like Google, Microsoft Azure, and Binance Crypto Exchange, YubiKey consistently demonstrated faster av-erage authentication speeds compared to Secure Enclave.

The results highlight YubiKey's potential advantage in scenarios prioritizing quick and convenient access. Moreover, the analysis of cryptographic operations underscored the strengths of each method in enhancing security through protocols like FIDO U2F and Secure Enclave's biometric authentication capabilities.

These conclude that a combined approach leveraging both YubiKey and Secure Enclave could establish a comprehensive security strategy, enhancing protection against diverse cyber threats. This integration could effectively mitigate risks associated with physical attacks, malware, phishing, and other cybersecurity challenges, thereby sustaining overall security posture across different platforms and environments.