nerdexam
Isaca

CDPSE · Question #30

Which authentication practice is being used when an organization requires a photo on a government-issued identification card to validate an in-person credit card purchase?

The correct answer is A. Possession factor authentication. The government-issued photo ID is a physical document - something the person physically possesses. Presenting it to validate a transaction is possession factor authentication ('something you have'). The photo on the ID confirms that the person presenting the card is the legitimat

Privacy Architecture

Question

Which authentication practice is being used when an organization requires a photo on a government-issued identification card to validate an in-person credit card purchase?

Options

  • APossession factor authentication
  • BKnowledge-based credential authentication
  • CMulti-factor authentication
  • DBiometric authentication

How the community answered

(53 responses)
  • A
    89% (47)
  • B
    6% (3)
  • C
    2% (1)
  • D
    4% (2)

Explanation

The government-issued photo ID is a physical document - something the person physically possesses. Presenting it to validate a transaction is possession factor authentication ('something you have'). The photo on the ID confirms that the person presenting the card is the legitimate owner of that physical credential. Option B (knowledge-based) would involve a PIN, password, or secret question. Option C (multi-factor) would require combining two or more different factor types - a single physical ID is only one factor. Option D (biometric) would use inherent physical traits like fingerprints or facial recognition scanned by a system, not a static photo on a card for visual comparison.

Topics

#Authentication Factors#Identity Verification#Access Control#Security Controls

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice