Which of the following would BEST deter an attacker trying to brute force 4-digit PIN numbers to
access an account at a bank teller machine?
A.
Account expiration settings
B.
Complexity of PIN
C.
Account lockout settings
D.
PIN history requirements
Explanation:
Account lockout settings determine the number of failed login attempts before the account gets
locked and how long the account will be locked out for. For example, an account can be
configured to lock if three incorrect passwords (or in this case PIN’s) are entered. The account can
then be configured to automatically unlock after a period of time or stay locked until someonemanually unlocks it.