Exam 220-1002 topic 1 question 405 discussion

CompTIA always talks about how biometrics are the best for security.. so why would compTIA have C as the answer. My guess here would be D. A can be fooled with photographs (I know, the most modern ones can't) B can be fooled with voice recordings, C can be observed when the user inputs it but D is the hardest to fake/obtain.

D is the correct answer SCREEN LOCKS AND BIOMETRIC AUTHENTICATION All but the cheapest device models now include a fingerprint sensor to provide a biometric authentication method. Apple refers to this feature as Touch ID. The user sets up a template fingerprint scan, which is converted to a unique hash and stored within a secure cache on the device (enrollment). To authenticate, the user touches the reader and the device.

All the other autentication methods are safe and good option,however not all smartphones are equipped with the software/hardware to use them. Passworded or swipe combination are available on all devices, so is more likely they get suggested

Question does not ask for the most secure option hence why it is passcode lock. The other 3 options might not be available on the phone Ann has.

894 | The Official CompTIA® A+® Core 1 and Core 2 Student Guide (Exams 220-1001 and 220-1002) SCREEN LOCKS AND BIOMETRIC AUTHENTICATION All but the cheapest device models now include a fingerprint sensor to provide a biometric authentication method. Apple refers to this feature as Touch ID. The user sets up a template fingerprint scan, which is converted to a unique hash and stored within a secure cache on the device (enrollment). To authenticate, the user touches the reader and the device. Don't get thrown off by 'enrol' keyword.

I would normally go with D here since it's the most secure biometric option, however when looking up "enroll new mobile device", this comes up as a Microsoft article (https://learn.microsoft.com/en-us/microsoft-365/admin/basic-mobility-security/enroll-your-mobile-device?view=o365-worldwide) "When you enroll your device in Basic Mobility and Security for Microsoft 365, you might be required to set up a password, together with allowing the option for your work organization to wipe the device. A device wipe can be performed from the Microsoft 365 admin center, for example, to remove all data from the device if the password is entered incorrectly too many times or if usage terms are broken."

Answer C is correct. When you set a new phone for the first time, the first thing you have to provide from a pin or passcode, for the purposes it is the same. It can also define a password, but this option is not presented. After you have defined a passcode, it is when you can define the other insurance adjustment. In Android it is like that. I do not know in the case of an iPhone as it will be.

imagine you bought a new mobile after you start him at first appear passcode lock :) so don't think too much...

Enroll implies they are using something like Intune, or an equivalent application to authenticate (MFA), in which case the only thing that would work is a passcode. It's a huge assumption but that's CompTIA's MO.

the phone is probably old like some these questions so I guess password could be right

I guess we are to presume the device is being enrolled into a Intune environment and therefore requires a passcode???????????. These vague questions don't help. I guess the device enrollment is the key to the question.

D is correct

I think sometimes common sense may be useful answering some CompTIA questions. Except C, all other options are biometrics lock. So, common sense will make me select C. Also given the fact that the new phone is just being enrolled, passcode would only be required as the software for biometrics haven't been loaded I suppose...

Why not A? Wouldn’t it be better to use the latest technology?