It would depend on how the OTP is delivered to say whether it can act as an alert. Through text, maybe. Also maybe through email, but only if you had notifications for your email. But a push notification would be a better fit
Push notifications (B) can work as an authentication method and an alerting mechanism for unauthorized access attempts. Push notifications allow for two-factor authentication (2FA), where a user receives a message on their mobile device that must be confirmed in order to log in to an application or website. If an unauthorized access attempt is made, the system can alert the user via a push notification, allowing the user to take action and confirm whether the access attempt was legitimate or not. This serves as an additional layer of security beyond a username and password, and provides a way for the user to be aware of and prevent potential unauthorized access.
Push notifications are becoming a popular method for authentication. The mechanism works by alerting a user on his/her mobile device that an authentication attempt is being requested on their desktop/laptop or other computing device. Instead (or in addition) of inserting a username and password on the desktop/laptop, the user will confirm their login attempt on the mobile push notification. Once confirmed the user will be able to access the resource they are attempting to use. This method doubles as an alert of fraudulent activity for the owner of the resource in the event that they were not attempting to log on. (See https://doubleoctopus.com/security-wiki/authentication/push-notification-authentication/ for more details).
Push notification services send messages to
mobile devices from apps. As an example, if Lisa installs the
Facebook app on her smartphone and enables notifications, the
Facebook app will send her notifications. Software developers can
configure the notifications to appear even if the device is in screen
lock mode and even if the app is not running. MDM apps can send
notifications to remind users of security settings or let them know if
their device complies with security policy requirements.
I don't believe the answer is a push notification.
If we read the question carefully, it states that it has to function as an authentication method and as an alert method.
A push notification is not necessarily an authentication method; many argue this by saying that the push notification will request authorization or denial. However, that is NOT specified in the wording of the question. The question simply mentions "push notifications," which could be just an alert that someone has logged into your account, which does not fulfill the authentication method.
The only thing that serves as both an authentication method and an alert is the One-Time Password (OTP). In all CompTIA texts, the OTP is described as an authentication method (one of the most secure), and it also perfectly fulfills the task of alerting.
you are waaaay over thinking it. the push notification will definitely alert the USER THAT GETS THE NOTIFICATION, what happens if they didn't sign in anywhere? They call that an alert.
Push notifications can be used as a form of MFA, such as approving the authentication pop-up/message on the mobile device. However, they cannot be authenticated by the notification alone and still require user interaction with the website/application.
Push notifications can work as both an authentication method and an alerting mechanism for unauthorized access attempts. When used for authentication, push notifications are sent to a user's registered device (such as a smartphone) as a second factor for multi-factor authentication (MFA). The user receives the notification and must approve or deny the login attempt.
If an unauthorized person attempts to log in, the legitimate user will receive the push notification and can promptly deny the login attempt. This serves as an alerting mechanism to the legitimate user that someone is trying to access their account.
It would depend on how the OTP is delivered to say whether it can act as an alert. Through text, maybe. Also maybe through email, but only if you had notifications for your email. But a push notification would be a better fit, because you are guaranteeing that the person will actually get the notification
Push Notification Authentication enables user authentication by sending a push notification directly to a secure application on the user's device, alerting them that an authentication attempt is taking place. The answer is B
A smart card can work as both an authentication method and an alerting mechanism for unauthorized access attempts. A smart card is a physical card, typically the size of a credit card, that contains a microprocessor and memory. The card can be inserted into a card reader, where it can be used to authenticate the user's identity by requiring a personal identification number (PIN) or password.
Additionally, a smart card can also be configured to send a push notification to the user's mobile device whenever an unauthorized access attempt is detected. This can alert the user to the attempt and allow them to take appropriate action to prevent unauthorized access.
You're saying that a push notification will be send, that's why the answer is B) Push notification. No need of a smart card in order to use push notifications
What Is an Attestation Service? An attest service, or attestation service, is an independent review of a company's financial statement conducted by a certified public accountant (CPA). The CPA delivers an attestation report with conclusions about the reliability of the data.
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.SY0-601 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Ribeiro19
Highly Voted 2 years, 9 months agoserginljr
2 years, 9 months agodeeden
2 years, 9 months agodaddylonglegs
1 year, 8 months agoronniehaang
Highly Voted 2 years, 5 months agoSeWiz
Most Recent 1 year, 3 months agoLordJaraxxus
1 year, 4 months agodemianUY
1 year, 8 months agoLeeBeeDee
1 year, 8 months agoLeeBeeDee
1 year, 8 months agomademade
1 year, 7 months agomademade
1 year, 7 months agoApplebeesWaiter1122
1 year, 11 months agobolun
1 year, 11 months agodaddylonglegs
1 year, 8 months agonicekoda
2 years, 6 months agoFMMIR
2 years, 6 months agoLeDarius3762
1 year, 11 months agodaddylonglegs
1 year, 8 months agoSandon
2 years, 5 months agoandrizo
2 years, 8 months ago