A company is drafting a security policy for its BYOD program. The draft states that employees' personal mobile devices must be secured using only the device's built-in biometric authentication, such as a fingerprint or face scan. A security analyst is asked to review the policy. Which of the following is the BEST reason for the analyst to recommend against this policy?
Biometric authentication is a single factor that can be bypassed or spoofed, leaving the device vulnerable.
Relying on biometrics leads to high battery consumption on mobile devices.
Biometric authentication is not supported by most mobile device management (MDM) platforms.
Users often find biometric authentication less convenient than a traditional password.
While biometric authentication provides a convenient and personal security layer, it should not be the sole method of protection. Biometric systems can be bypassed or spoofed using various techniques. Furthermore, a single authentication factor is inherently weaker than a multi-factor approach. Therefore, the best practice is to require biometrics in conjunction with another factor, like a strong PIN or password, as part of a multi-factor authentication (MFA) strategy to provide defense-in-depth.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the limitations of biometric security measures?
Open an interactive chat with Bash
What is multi-factor authentication (MFA) and how does it enhance security?
Open an interactive chat with Bash
How can biometric measures be integrated into a security strategy?