Exam 220-1102 topic 1 question 482 discussion

The key to this question is BEST. Brute force attacks can't get past the MFA, therefore they fail More complex passwords are a good solution, because the more complex, the harder it is to crack, but its not better then introducing a second factor.

Proper answer should be A. But as per A+ official resource material answer is C. "Brute force attacks are effective against short passwords. Longer and more complex passwords increase the amount of time the attack takes to run."

A combination of methods can strengthen security controls against brute-force attacks, including strong passwords, limiting login attempts, and multi-factor authentication: Strong passwords: Create complex, unique passwords that are hard to guess but easy to remember. Limit login attempts: Lock out accounts after a set number of failed login attempts, usually 3–5. The lockout can last for a set time or until an administrator unlocks the account. Multi-factor authentication (MFA): Adds layers of authentication to verify the user's identity. MFA requires a second factor, like access to a smartphone or email, in addition to a password.

The best option to strengthen security controls against brute-force attacks is A. Multifactor authentication.

A. Multifactor authentication Multifactor authentication (MFA) is the best option among the provided choices for strengthening security controls against brute-force attacks. MFA adds an extra layer of security by requiring users to provide multiple forms of authentication before gaining access to a system or application. Even if an attacker manages to guess or brute-force a password, they would still need the additional authentication factor (such as a code sent to a mobile device) to gain access, significantly reducing the effectiveness of brute-force attacks. chat gpt 4

MFA does not protect against brute force attacks, increased password complexity does.