A building currently uses badge readers that unlock doors when an employee swipes an NFC card. Management wants to add multifactor authentication (MFA) but does not want to purchase biometric scanners. Which change would satisfy the MFA requirement while allowing the existing badge hardware to remain in service?
Replace NFC badges with RFID key fobs that unlock the door on proximity.
Disable badge readers and instead email a time-based one-time password (OTP) to each employee at the door.
Prompt users for a PIN after they swipe their existing NFC badge.
Require employees to swipe the same NFC badge twice in succession.
MFA requires at least two different factor categories (knowledge, possession, or inherence). Swiping an NFC badge is a possession factor. Adding a PIN the user must enter after swiping introduces a knowledge factor, so the system now checks two distinct factors-meeting MFA guidelines. Swiping the badge twice or switching to another possession item (key fob) is still only one factor. Replacing the badge with an emailed OTP removes the possession factor entirely and still uses only one factor unless combined with something else.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the difference between a possession factor and a knowledge factor in MFA?
Open an interactive chat with Bash
How does NFC technology work in badge readers?
Open an interactive chat with Bash
Why does swiping an NFC badge twice not qualify as MFA?