312-50V9 · Question #70
Which set of access control solutions implements two-factor authentication?
The correct answer is A. USB token and PIN. Two-factor authentication requires credentials from two distinct factor categories: something you know, something you have, or something you are.
Question
Which set of access control solutions implements two-factor authentication?
Options
- AUSB token and PIN
- BFingerprint scanner and retina scanner
- CPassword and PIN
- DAccount and password
How the community answered
(30 responses)- A87% (26)
- B7% (2)
- C3% (1)
- D3% (1)
Why each option
Two-factor authentication requires credentials from two distinct factor categories: something you know, something you have, or something you are.
A USB token represents the 'something you have' factor (a physical possession) while a PIN represents the 'something you know' factor (a memorized secret). Combining these two different factor categories satisfies the definition of true multi-factor authentication, as each credential comes from a separate category.
Both a fingerprint and a retina scan are biometric factors that fall under 'something you are', so this is single-factor authentication using two inputs from the same category.
Both a password and a PIN are knowledge-based factors ('something you know'), making this single-factor authentication despite involving two separate secrets.
An account name and password are both 'something you know' factors, providing only one authentication factor category and not satisfying two-factor requirements.
Concept tested: Two-factor authentication factor category requirements
Source: https://csrc.nist.gov/glossary/term/multi_factor_authentication
Topics
Community Discussion
No community discussion yet for this question.