nerdexam
EC-Council

312-50V10 · Question #348

What are the three types of authentication?

The correct answer is B. Something you: have, know, are. The three universal authentication factors are something you know, something you have, and something you are - the foundation of multi-factor authentication standards.

Information Security and Ethical Hacking Fundamentals

Question

What are the three types of authentication?

Options

  • ASomething you: know, remember, prove
  • BSomething you: have, know, are
  • CSomething you: show, prove, are
  • DSomething you: show, have, prove

How the community answered

(26 responses)
  • B
    92% (24)
  • C
    4% (1)
  • D
    4% (1)

Why each option

The three universal authentication factors are something you know, something you have, and something you are - the foundation of multi-factor authentication standards.

ASomething you: know, remember, prove

'Remember' is redundant with 'know' and is not a distinct factor, and 'prove' is not a recognized standard authentication category.

BSomething you: have, know, areCorrect

The three recognized authentication factors are: something you know (e.g., a password or PIN), something you have (e.g., a smart card, hardware token, or OTP device), and something you are (e.g., a fingerprint, retina scan, or other biometric). These categories are codified in standards such as NIST SP 800-63B and underpin the design of multi-factor authentication systems. Combining two or more of these factors significantly reduces the risk of unauthorized access.

CSomething you: show, prove, are

'Show' is not a recognized authentication factor in any standard security framework such as NIST or ISO/IEC 27001.

DSomething you: show, have, prove

Both 'show' and 'prove' are informal terms not defined as authentication factor categories in any authoritative security standard.

Concept tested: Three standard authentication factors - know, have, are

Source: https://pages.nist.gov/800-63-3/sp800-63b.html

Topics

#authentication factors#multi-factor authentication#something you know have are#identity verification

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice