CompTIA CASP+ (CAS-004) — Question 334

A company has been the target of LDAP injections, as well as brute-force, whaling, and spear-phishing attacks. The company is concerned about ensuring continued system access. The company has already implemented a SSO system with strong passwords. Which of the following additional controls should the company deploy?

Answer options

• A. Two-factor authentication
• B. Identity proofing
• C. Challenge questions
• D. Live identity verification

Correct answer: A

Explanation

The correct choice, Two-factor authentication, adds an extra layer of security beyond just passwords, making it harder for attackers to gain access. Identity proofing, challenge questions, and live identity verification may enhance security, but they do not provide the same level of immediate protection against unauthorized access as two-factor authentication does.