A company’s password and authentication policies prohibit the use of shared passwords and transitive
trust. Which of the following if implemented would violate company policy? (Select TWO)
A.
Discretionary access control
B.
Federation
C.
Single sign-on
D.
TOTPE. Two-factor authentication
It is B and D. Federated ID is a transitive trust situation. TOTP is kinda iffy except it uses a shared key
A single secret key, to be used for all subsequent authentication sessions, must have been shared between the server and the user’s device over a secure channel ahead of time. If some more steps are carried out, the user can also authenticate the server using TOTP.
Keep having issues with captcha.
0
0
I think it is B and C. SSO would be transitive trust.
0
0