CAS-001 Question #175: Real Exam Question with Answer & Explanation

The correct answer is D: Federated IDs. Federated identity management allows organizations to link and reuse existing identity systems across different domains or services without rebuilding them. Standards like SAML, OAuth, or OpenID Connect enable a 'trust and delegate' model where each system continues to use its ow

Question

databases, web portals, and cloud data sets. Each data store had a unique set of custom developed authentication mechanisms and schemas. Which of the following approaches to combining the disparate mechanisms has the LOWEST up front development costs?

Options

AAttestation
BPKI
CBiometrics
DFederated IDs

Explanation

Federated identity management allows organizations to link and reuse existing identity systems across different domains or services without rebuilding them. Standards like SAML, OAuth, or OpenID Connect enable a 'trust and delegate' model where each system continues to use its own authentication internally while accepting tokens or assertions from a central identity provider. This has the lowest upfront cost because existing systems do not need to be replaced or rewritten - only integration adapters are needed. Attestation (Option A) is a process for verifying system state, not an authentication integration approach. PKI (Option B) requires significant infrastructure deployment (CAs, certificate lifecycle management) and custom integration into each system - high upfront cost. Biometrics (Option C) requires hardware and middleware deployment across all endpoints - extremely high upfront cost and complexity.

Community Discussion

No community discussion yet for this question.

Full CAS-001 Practice