ExamTopics Logo
Mail Us[email protected]
Menu
Iapp Discussions
exam questions

Exam CIPT All Questions

View all questions & answers for the CIPT exam
Go to Exam

Exam CIPT topic 1 question 96 discussion

Actual exam question from IAPP's CIPT
Question #: 96
Topic #: 1
[All CIPT Questions]

A privacy engineer has been asked to review an online account login page. He finds there is no limitation on the number of invalid login attempts a user can make when logging into their online account.
What would be the best recommendation to minimize the potential privacy risk from this weakness?

  • A. Implement a CAPTCHA system.
  • B. Develop server-side input validation checks.
  • C. Enforce strong password and account credentials.
  • D. Implement strong Transport Layer Security (TLS) to ensure an encrypted link.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by 837vq3 at Oct. 23, 2021, 5:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Ssourav
11 months, 1 week ago
Selected Answer: A
A. Implement a CAPTCHA system. A CAPTCHA system helps to prevent automated attacks and limit the number of invalid login attempts, reducing the risk of unauthorized access and protecting user privacy.
upvoted 2 times
...
z80r
2 years, 5 months ago
Selected Answer: A
A is the right answer
upvoted 2 times
Stants
1 year, 4 months ago
The best recommendation to minimize the potential privacy risk from this weakness would be A. Implement a CAPTCHA system. A CAPTCHA system can help prevent automated attacks, such as brute force or password spraying attacks, by requiring users to prove they are human before they can proceed. This would effectively limit the number of invalid login attempts because an attacker would need to solve a CAPTCHA challenge for each attempt, which is computationally expensive and time-consuming. This makes automated attacks much less feasible. Please note that this should be used in conjunction with other security measures like account lockouts after a certain number of failed attempts, strong password policies, and encryption to provide a comprehensive security solution.
upvoted 1 times
...
...
chariot
3 years, 1 month ago
B is the answer, Captcha system helps prove you are not a robot but doesnt help with authentication
upvoted 2 times
...
187san
3 years, 6 months ago
A is the answer
upvoted 2 times
...
k4d4v4r
3 years, 8 months ago
A is correct
upvoted 2 times
...
837vq3
3 years, 8 months ago
why not "A"?
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel