CompTIA CASP+ (CAS-004) — Question 303

A security engineer needs to implement a cost-effective authentication scheme for a new web-based application that requires:

• Rapid authentication
• Flexible authorization
• Ease of deployment
• Low cost but high functionality

Which of the following approaches best meets these objectives?

Answer options

• A. Kerberos
• B. EAP
• C. SAML
• D. OAuth
• E. TACACS+

Correct answer: D

Explanation

OAuth is ideal for this scenario as it provides a low-cost, high-functionality solution that allows rapid authentication and flexible authorization for web applications. In contrast, Kerberos is more complex and costly to implement, EAP is often used for network access rather than web applications, SAML is more suited for single sign-on scenarios and can be complicated, and TACACS+ is typically used for device administration rather than web-based applications.