A healthcare organization currently uses simple magnetic-stripe ID cards that unlock office doors when swiped. Management now wants replacement cards that
store a user-specific digital certificate for Windows logon,
require the employee to enter a PIN at the reader before the door unlocks, and
can be individually deactivated if the card is lost. Which physical access security control best satisfies all of these requirements?
Issue contact or contactless smart cards with an embedded microprocessor chip
Install magnetic door locks that open after a user enters a correct PIN on a keypad
Add fingerprint scanners outside each door and enroll every employee's print
Replace badges with RFID key fobs that transmit a unique ID when near the reader
Smart cards contain an embedded microprocessor that can securely hold a user's private key or certificate. When the card is inserted or tapped, the employee must also enter a PIN, providing two-factor authentication (something you have + something you know). Because each card is uniquely programmed, administrators can revoke or disable a single lost card without affecting others. RFID key fobs and proximity badges do not store certificates or require a PIN, a standalone numeric keypad does not provide the "something you have" factor or certificate storage, and a fingerprint reader supplies biometrics but no portable credential that can be disabled individually.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a smart card and how does it work?
Open an interactive chat with Bash
How does a smart card differ from an RFID key fob?
Open an interactive chat with Bash
Why can't fingerprint scanners satisfy these requirements?