A Chief Information Security Officer (CISO) wants to implement two-factor authentication within the company.
Which of the following would fulfill the CISO’s requirements?
Username and password
Retina scan and fingerprint scan
USB token and PIN
Proximity badge and token
Multi-factor authentication (MFA) is a method of computer access control which a user can pass by
successfully presenting authentication factors from at least two of the three categories:
knowledge factors (“things only the user knows”), such as passwords
possession factors (“things only the user has”), such as ATM cards
inherence factors (“things only the user is”), such as biometrics
In this question, a USB token is a possession factor (something the user has) and a PIN is a knowledge factor
(something the user knows).