Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Iia Discussions

Exam IIA-CIA-Part3 topic 1 question 89 discussion

Actual exam question from IIA's IIA-CIA-Part3
Question #: 89
Topic #: 1
[All IIA-CIA-Part3 Questions]

Which of the following application software features is the least effective control to protect passwords?

  • A. Suspension of user IDs after a user's repeated attempts to sign on with an invalid password.
  • B. Encryption of passwords prior to their transmission or storage.
  • C. Forced change of passwords after a designated number of days.
  • D. Automatic logoff of inactive users after a specified time period of inactivity.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by dedfef at Dec. 8, 2020, 7:08 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Domiii
3 months, 2 weeks ago
Selected Answer: B
The correct answer is B. Encryption of passwords prior to their transmission or storage. This option is the least effective control to protect passwords. While encryption is important for securing passwords, it only protects against unauthorized access to the stored or transmitted password. Other options provide additional layers of protection, such as suspending user IDs after repeated invalid password attempts, forcing password changes, and automatic logoff of inactive users
upvoted 1 times
...
Crazyhydra
7 months ago
D is the correct answer, it does not protect the password.
upvoted 1 times
...
sed999
2 years, 4 months ago
The correct answer is B , according to GTAG
upvoted 1 times
...
Steve8Taiwan
2 years, 6 months ago
I think D should be the answer.
upvoted 1 times
...
Walewweeeed
2 years, 7 months ago
I think b is correct regarding GTAG of auditing identity and access management
upvoted 2 times
...
dedfef
3 years, 4 months ago
the answer doesnt make sense. How is the forced changing of passwords a weak control?
upvoted 2 times
AKKR
3 years, 4 months ago
It does not protect from stealing password, but only from using stolen one.
upvoted 4 times
Tico
2 years, 8 months ago
"D. Automatic logoff" also doesn't protect from stealing passwords, either. Is there any other reasonable explanation to choose C as an answer?
upvoted 1 times
...
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel