A technician wants to implement a dual factor authentication system that will enable the
organization to authorize access to sensitive systems on a need-to-know basis. Which of the
following should be implemented during the authorization stage?
A.
Biometrics
B.
Mandatory access control
C.
Single sign-on
D.
Role-based access control
“Biometrics” is not in and of itself dual-factor. Also, it has to do with the authentication rather than the authorization stage. Finally, “sensitive need to know” sounds like data classification, which sounds like MAC. Why, then is the answer “A”?
0
0
I don’t agree with the answer either.
0
0
Definitely B.
A and C are not related to authorization, they are authentication.
D could be, but “sensitive systems” sounds more MAC than RBAC.
0
0
C and D are out Role-base is defined by the job. Sensitive systems and need-to-know are definitive clues for MAC. I think in this case, authorization pertains to biometrics in that biometrics will be needed for “authorization” to enter the location where the sensitive systems are located (like a classified military workspace). Mandatory Access control will come into play when the user logs into the system they are using and tries to access files. Also, biometrics are one factor, the other could be username/password or a token to access the system.
0
0
perhaps, but this question could be a lot clearer. I think the ans. could go either way, and this is not good.
0
0
Nathan has a point, but physical access using biometrics should still be authentication, should it not? Authorization is applied directly after he’s authenticated, which would allow access to the room/system.
As for “dual factor”, that tells us we’re dealing with authentication. There’s no dual factor authorization, that doesn’t make sense.
This question needs to be rephrased.
0
0