nerdexam
Exams101Questions#413
F5

101 · Question #413

101 Question #413: Real Exam Question with Answer & Explanation

The correct answer is B: False. IP address alone is insufficient for authentication because IPs can be shared via NAT, dynamically assigned, or spoofed, providing no reliable proof of user identity.

Question

Identifying users by their IP address is a sufficient method of performing authentication and authorization.

Options

  • ATrue
  • BFalse

Explanation

IP address alone is insufficient for authentication because IPs can be shared via NAT, dynamically assigned, or spoofed, providing no reliable proof of user identity.

Common mistakes.

  • A. Stating this is true would be incorrect because IP-based identification lacks the uniqueness, integrity, and non-repudiation properties required for proper authentication and authorization.

Concept tested. Limitations of IP-based user authentication

Reference. https://cheatsheetseries.owasp.org/cheatsheets/Authentication_Cheat_Sheet.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice