CISSP · Question #44
CISSP Question #44: Real Exam Question with Answer & Explanation
The correct answer is A: False Acceptance Rate (FAR). When security requires that no unauthorized individual must ever gain access, the False Acceptance Rate (FAR) is the critical metric to minimize, as it measures how often impostors are incorrectly granted entry.
Question
Which one of the following is the MOST important in designing a biometric access system if it is essential that no one other than authorized individuals are admitted?
Options
- AFalse Acceptance Rate (FAR)
- BFalse Rejection Rate (FRR)
- CCrossover Error Rate (CER)
- DRejection Error Rate
Explanation
When security requires that no unauthorized individual must ever gain access, the False Acceptance Rate (FAR) is the critical metric to minimize, as it measures how often impostors are incorrectly granted entry.
Common mistakes.
- B. FRR (False Rejection Rate) measures how often legitimate, authorized users are incorrectly denied access, which affects usability and convenience but does not address the security risk of unauthorized entry.
- C. The Crossover Error Rate (CER) is the point where FAR and FRR are equal and is used to compare the overall accuracy of biometric systems, but it is a balanced metric rather than one optimized for preventing unauthorized access specifically.
- D. 'Rejection Error Rate' is not a standard or recognized biometric metric; the correct terms are FAR, FRR, and CER, making this choice technically invalid.
Concept tested. Biometric system FAR vs FRR security tradeoffs
Reference. https://csrc.nist.gov/glossary/term/false_accept_rate
Topics
Community Discussion
No community discussion yet for this question.