For an organization considering two-factor authentication for secure network access, which of the following is MOST secure?
Correct Answer: D
For an organization considering two-factor authentication for secure network access, the most secure option is smart card and biometrics. A smart card is a physical device that contains a microchip or a magnetic stripe that stores information, such as a digital certificate, a private key, or a personal identification number (PIN). A biometric is a physical or behavioral characteristic of a user that can be measured and compared, such as a fingerprint, a retina scan, a voice print, or a facial recognition. Smart card and biometrics are two different types of factors that can provide strong and reliable authentication for network access. A smart card can prove that the user has a valid credential or key, while a biometric can prove that the user is who they claim to be. Smart card and biometrics can prevent unauthorized or fraudulent access, as they are difficult to forge, copy, or share56 References: CISSP All-in-One Exam Guide, Eighth Edition, Chapter 6: Communication and Network Security, pp. 322-323; Official (ISC)2 CISSP CBK Reference, Fifth Edition, Domain 4:
Communication and Network Security, pp. 450-451.