CISSP-ISSAP · Question #6
Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to implement two-factor authentication for the employees to access their networks. He has told him that he would like
The correct answer is D. Security token. Security token (D) is correct because it is a physical hardware device that generates or stores authentication credentials and is designed to work alongside a PIN - satisfying both the "hardware device" and "two-factor" requirements at a lower cost than smart cards. Why the distr
Question
Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to implement two-factor authentication for the employees to access their networks. He has told him that he would like to use some type of hardware device in tandem with a security or identifying pin number. Adam decides to implement smart cards but they are not cost effective. Which of the following types of hardware devices will Adam use to implement two-factor authentication?
Options
- ABiometric device
- BOne Time Password
- CProximity cards
- DSecurity token
How the community answered
(43 responses)- A7% (3)
- B5% (2)
- C16% (7)
- D72% (31)
Explanation
Security token (D) is correct because it is a physical hardware device that generates or stores authentication credentials and is designed to work alongside a PIN - satisfying both the "hardware device" and "two-factor" requirements at a lower cost than smart cards.
Why the distractors are wrong:
- A. Biometric device - Uses a physical characteristic (fingerprint, retina) for authentication, not a hardware device used with a PIN in the way described; also typically more expensive and complex to deploy.
- B. One Time Password (OTP) - This is an authentication method, not a hardware device itself; while a token can generate an OTP, OTP alone is not the hardware solution the question asks for.
- C. Proximity cards - These use RFID for physical access control (e.g., unlocking doors) and don't inherently pair with a PIN for network authentication; they're also conceptually similar to smart cards, which were already ruled out.
Memory tip: Think of a security token as a "cheaper smart card alternative" - it's the go-to hardware MFA device when cost is a constraint. The word token signals a small, standalone device (like an RSA SecurID fob) that pairs with something you know (PIN) = two factors.
Topics
Community Discussion
No community discussion yet for this question.