Exam 220-1101 topic 1 question 580 discussion

A. Biometric authentication Biometric authentication, such as fingerprint or facial recognition, adds an extra layer of security by verifying a user's identity based on unique physical characteristics. This makes it significantly harder for unauthorized individuals to gain access to company devices. The other options are not as effective: B. Peer-reviewed log-ins: This is not a standard security practice and is not effective in preventing unauthorized access. C. Log-in scripts: Log-in scripts can automate the login process but do not add additional security layers. D. One-time tokens: While one-time tokens can add an extra layer of security, biometric authentication is generally considered more secure and convenient. By implementing biometric authentication, the organization can significantly enhance the security of its devices and protect sensitive information. GG

I am leaning towards D for this one. Not all the laptops (especially where BYOD is allowed) will have that finger sensor, therefore harder and expensive to implement quickly. For OTP, there are Apps already out there (e.g. RSA SecurID, Google, Windows Authenticator)

Biometric authentication provides a high level of security by using unique biological traits such as fingerprints, facial recognition, or iris scans. Since a security breach exposed usernames and passwords, implementing biometric authentication ensures that only authorized users can access company devices—even if their credentials have been compromised.

A is incorrect D is the correct answer In response to a security breach involving compromised credentials, one-time tokens provide an effective method to enhance authentication security. These tokens are part of multi-factor authentication (MFA) and generate unique codes for each login attempt, ensuring that even if credentials are stolen, unauthorized access is prevented. Why One-time Tokens? One-time tokens are dynamic and expire after a single use, significantly reducing the risk of unauthorized access even if usernames and passwords are compromised. Often delivered through apps like Google Authenticator, hardware tokens, or SMS.

This one is tough because it could be either A or D. I would think the company would go the less expensive route. So, I'm going with D.

Biometric authentication provides an added layer of security by using unique biological traits (such as fingerprints, facial recognition, or iris scans) to verify user identity. Since the breach revealed usernames and passwords, adding biometrics ensures that even if a password is compromised, the attacker would still need to provide the user's biometric data to access the device, greatly enhancing security.

A. Biometric authentication