CISSP Question #796: Real Exam Question with Answer & Explanation

Sign in or unlock CISSP to reveal the answer and full explanation for question #796. The question stem and answer options stay visible for context.

Submitted by manish99· Mar 5, 2026Software Development Security

Question

A web application requires users to register before they can use its services. Users must choose a unique username and a password that contains a minimum of eight characters. Which method MUST be used to store these passwords to ensure offline attacks are difficult?

Options

AUse an encryption algorithm that is fast with a random per-user encryption key.
BUse a hash function that is fast with a per-user random salt.
CUse a hash function with a cost factor and a per-user random salt.
DUse an encryption algorithm with a random master key.

Unlock CISSP to see the answer

You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CISSP - $49.99 / 30 days Sign in

Topics

#password hashing#salting#key stretching#secure storage

Full CISSP Practice Browse All CISSP Questions