An employee has been assigned to work on a top-secret project that requires access to highly sensitive data. What is the BEST method to ensure that the employee is the only individual who can access this data?
Require the employee to use multifactor authentication (MFA) when accessing the data
Use a strong password that is changed every 30 days for the data file
Implement an access control list (ACL) that only includes the employee's user account
Assign a generic account with limited privileges that the employee uses for access
Multifactor authentication (MFA) is the best method to ensure that the intended individual has access to sensitive data because it requires the user to provide two or more verification factors to gain access to the resources. This significantly increases security compared to single-factor methods, such as a password alone, by adding an additional layer that could involve something the user knows, possesses, or an inherent characteristic. Other methods like using a single password or an access control list are less secure on their own as they rely on one factor of authentication or could be too broad in permissions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the components of multifactor authentication (MFA)?
Open an interactive chat with Bash
How does MFA enhance security compared to traditional passwords?