Exam SY0-601 topic 1 question 447 discussion

This question is not realistic and made up just to confuse everyone. MFA means multiple factors but they only ask about something you possess which I assume means something you have but we also possess fingerprints and a face. This question was specifically designed to confuse and is not realistic in a real cybersecurity situa

The question only specifies "possession," so we should be thinking about 'something you have.' Answers C, D, and F are all 'something you are,' so those are out. B and E are both 'something you have.' Even though the question specifies that MFA is being implemented, we are not asked to determine the scope of the MFA -- it only mentions possession. The question doesn't mention 'something you know' just like it doesn't mention 'something you are.' Based on that deduction, I am inclined to rule out A on the same basis for ruling out C, D, and E. If i am wrong and we are supposed to outline the full scope of the MFA, why would we select 'something you know' (answer A) over 'something you are' (C, D, F) when there is no mention of either in the question?

Its It's MFA so there must be at least two different factors used it cannot possibly be BE. I say AE

B. Time-based one-time password E. Hardware token

A. Passphrase B. Time-based one-time password It's MFA so there must be at least two different factors used. One of them must be a possession Factor (something you have). Passphrase: Something you know TOTP: Something you have (smart phone)

My answer is also BE but in the book they say that when both factors are 'something you have,' it doesn't count as multi-factor authentication. I have solved all the questions according to this until now. :(

The possession factor refers to something the user has, such as a physical device. Time-based one-time passwords (TOTP) are generated by an app or a dedicated device and are valid only for a short period of time. Hardware tokens are physical devices, such as smart cards or USB tokens, that generate or store unique authentication information. Fingerprints, rational scan n facial recognition would not be an appropriate choice in this case, as they rely on the inherence factor (something the user is) rather than the possession factor.

B. Time-based one-time password E. Hardware token

The systems administrator should choose Time-based one-time password (Option B) and Hardware token (Option E) as authentication methods to enforce MFA for corporate email account access. Both of these methods rely on the possession factor, which means that the user must have a specific device or object in their possession to authenticate. A passphrase (Option A) is a knowledge factor, while facial recognition (Option C), retina scan (Option D), and fingerprints (Option F) are all inherence factors.

-BE is correct The following authentication methods are not possession factors, and therefore are not suitable for the scenario described: A. Passphrase: A passphrase is a sequence of words or other text used to authenticate a user. While it can be a strong authentication factor, it is not a possession factor as the user does not need to physically possess anything to enter their passphrase. C. Facial recognition and F. Fingerprints: Facial recognition and fingerprints are examples of biometric authentication factors, which rely on unique physical characteristics to authenticate a user. While they can be secure, they are not possession factors as the user does not need to physically possess anything to use them. D. Retina scan: A retina scan is also an example of a biometric authentication factor, and is not a possession factor for the same reasons as facial recognition and fingerprints.