nerdexam
(ISC)2

CISSP-ISSAP · Question #97

You are the administrator for YupNo.com. You want to increase and enhance the security of your computers and simplify deployment. You are especially concerned with any portable computers that are used

The correct answer is B. Smart Cards. Smart Cards are correct because they provide strong two-factor authentication (something you have + something you know), which is ideal for remote employees on portable devices - they enhance security without restricting what users can do, and they simplify deployment through cen

Identity and Access Management (IAM) Architecture

Question

You are the administrator for YupNo.com. You want to increase and enhance the security of your computers and simplify deployment. You are especially concerned with any portable computers that are used by remote employees. What can you use to increase security, while still allowing your users to perform critical tasks?

Options

  • ABitLocker
  • BSmart Cards
  • CService Accounts
  • DAppLocker

How the community answered

(32 responses)
  • A
    16% (5)
  • B
    69% (22)
  • C
    9% (3)
  • D
    6% (2)

Explanation

Smart Cards are correct because they provide strong two-factor authentication (something you have + something you know), which is ideal for remote employees on portable devices - they enhance security without restricting what users can do, and they simplify deployment through centralized management via Active Directory/PKI infrastructure.

BitLocker (A) encrypts drives to protect data at rest, but does nothing to authenticate users or control what tasks they can perform - it addresses theft/loss scenarios, not access control. Service Accounts (C) are used to run background services and applications, not to authenticate human users or secure portable devices. AppLocker (D) restricts which applications users can run, which limits what users can do rather than allowing them to "perform critical tasks" freely - it also doesn't address the remote/portable security concern specifically.

Memory tip: Think of Smart Cards as a physical key - remote workers carry their credentials with them, making it hard for attackers to impersonate them even if the laptop is stolen, while users keep full access to their work.

Topics

#Smart Card Authentication#Multi-factor Authentication#Remote Access Control#Portable Device Security

Community Discussion

No community discussion yet for this question.

Full CISSP-ISSAP Practice