Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 529

Which security mechanism is designed to protect against “offline brute-force” attacks?

Answer options

• A. Token
• B. MFA
• C. Salt
• D. CAPTCHA

Correct answer: C

Explanation

The correct answer is Salt, as it adds unique data to passwords before hashing, making it significantly harder for attackers to use precomputed tables for brute-force attacks. Token, MFA, and CAPTCHA serve different security purposes, such as authentication and preventing automated access, but they do not directly address the vulnerabilities associated with offline brute-force attempts.