Yubikey is arguably more secure than GA but it's also less reliable and dependent upon network latency/conditions across multiple servers (done by consensus and requires something like at least 2 or
3 of Yubico's servers to approve the code within a very short amount of time).
Are you looking at supporting U2F authentication? This would avoid the need for an external dependency on the Yubico servers, while providing improved security.