Company policy requires the use if passphrases instead if passwords. Which of the following technical controls MUST be in place in order to promote the use of passphrases?
In order to PROMOTE the use of passphrases, you'll have to enforce a certain length of password, this will promote/encourage people to use a lengthy passphrase.
A passphrase is a sequence of words or other text used to control access to a computer system, program or data. A passphrase is similar to a password in usage, but is generally longer for added security.
Based on NIST's guidance link below best answer is length.
https://www.isaca.org/resources/isaca-journal/issues/2019/volume-1/nists-new-password-rule-book-updated-guidelines-offer-benefits-and-risk
Like passwords but made of phrases. A passphrase is a sequence of words or other text used to control access to a computer system, program or data. A passphrase is similar to a password in usage, but is generally longer for added security.
Study Guide said below:
In addition to password complexity, there will be related issues such as password length.
The rule is the longer, the better. Passphrases are becoming more common. Beyond using a
series of words or other text to control access, passphrases are generally longer in order to
provide additional security.
I think B makes more sense to me as it has longer lenth > then leading to great complexity.
FBI recommends passphrases over password complexity
Longer passwords, even consisting of simpler words or constructs, are better than short passwords with special characters.
It is Length.
"Instead of using a short, complex password that is hard to remember, consider using a longer passphrase," the FBI said.
"This involves combining multiple words into a long string of at least 15 characters," it added. "The extra length of a passphrase makes it harder to crack while also making it easier for you to remember."
https://www.zdnet.com/article/fbi-recommends-passphrases-over-password-complexity/#:~:text=%22Instead%20of%20using%20a%20short,15%20characters%2C%22%20it%20added.
A passphrase is a sequence of words or other text used to control access to a computer system, program, or data. A passphrase is like a password in usage but is generally longer for added security.
Should be B (Length). Password security increases with length, not necessarily with complexity, particularly because complex passwords often trigger "memory aids" (e.g. password are being written down).
B. Length
...A passphrase can also contain symbols, and does not have to be a proper sentence or grammatically correct. The main difference of the two is that passwords do not have spaces while passphrases have spaces and are longer than any random string of letters...
The use of punctuation, upper and lower cases in Passphrases also meets the complexity requirements for passwords...
Source: https://www.passworddragon.com/password-vs-passphrase
This section is not available anymore. Please use the main Exam Page.SY0-501 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
5be
Highly Voted 5 years, 2 months agoZen1
Highly Voted 5 years, 3 months agoZen1
5 years, 3 months agoamerigo
Most Recent 4 years, 2 months agoJMendo
4 years, 2 months agoAlexChen011
4 years, 2 months agoAkbarAslanov
4 years, 3 months agoexiledwl
4 years, 4 months agoPaulie_D
4 years, 4 months agomafrab
4 years, 4 months agoNYF
4 years, 5 months agoDaddyP
4 years, 7 months agoHanzero
4 years, 7 months agoCoRell
4 years, 9 months agovaxakaw829
4 years, 9 months agoDiogenes_td
4 years, 9 months agobowdi
4 years, 9 months agocallmethefuz
4 years, 10 months ago