ExpertMedium1 markMultiple Choice
CPA · Question 22 · Area II: Security
Which of the following authentication methods provides the highest level of security for remote access to a corporate network?
Which of the following authentication methods provides the highest level of security for remote access to a corporate network?
Answer options:
A.
Username and a complex 16-character password.
B.
Username, password, and a cognitive security question.
C.
Username, password, and a hardware token generating a one-time code.
D.
MAC address filtering.
How to approach this question
Look for Multi-Factor Authentication (MFA). Factors: Something you know, have, are. Two different factors > Strong password.
Full Answer
C.Username, password, and a hardware token generating a one-time code.✓ Correct
C
MFA combines two or more independent credentials: what you know (password), what you have (token), and what you are (biometric). This is significantly stronger than any single factor, regardless of complexity.
Common mistakes
Thinking a security question is a second factor. It is just another 'something you know'.
Practice the full CPA ISC Practice Exam
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is performing a risk assessment for a client that uses a public cloud provider for its core...HardQ02During a walkthrough of a client's change management process, the auditor notes that developers h...HardQ03A service organization provides a real-time transaction processing platform. The service level ag...HardQ04An auditor is reviewing a SQL query used by the finance team to generate a report of all sales tr...HardQ05A healthcare clearinghouse is preparing for a SOC 2® engagement. They utilize a private cloud dep...Hard