CERTIFIED-IN-CYBERSECURITY · Question #423
CERTIFIED-IN-CYBERSECURITY Question #423: Real Exam Question with Answer & Explanation
The correct answer is B: Use two or more authentication methods, such as password, biometrics, and a pin code. The best practice for implementing authentication is to use two or more authentication methods, such as passwords, biometrics and pin codes (see ISC2 Study Guide, Chapter 1, Module 1). This provides an extra layer of security and reduces the risk of unauthorized access. For examp
Question
When implementing authentication, which of the following is considered a best practice?
Options
- AUse only one method of authentication
- BUse two or more authentication methods, such as password, biometrics, and a pin code
- CUse two authentication methods, such as username and password
- DUse three authentication methods such as username, a password, and a biometrics
Explanation
The best practice for implementing authentication is to use two or more authentication methods, such as passwords, biometrics and pin codes (see ISC2 Study Guide, Chapter 1, Module 1). This provides an extra layer of security and reduces the risk of unauthorized access. For example, consider an organization's access control system. When a user attempts to authenticate, they are required to provide both their fingerprint scan (biometrics) and a PIN code. By combining these two authentication factors, the system increases security by verifying something the user is (biometrics) and something the user knows (PIN code). This multi-factor authentication approach significantly strengthens the overall authentication process. The remaining options are not correct because a username is not an authentication factor.
Topics
Community Discussion
No community discussion yet for this question.