CompTIA CASP+ (CAS-004) — Question 426

A software developer needs to add an authentication method to a web application. The following requirements must be met:

• The web application needs to use well-supported standards.
• The initial login to the web application should rely on an outside, trusted third party.
• The login needs to be maintained for up to six months.

Which of the following would best support these requirements? (Choose two.)

Answer options

• A. SAML
• B. Kerberos
• C. JWT
• D. RADIUS
• E. EAP
• F. Remote attestation

Correct answer: A, C

Explanation

SAML (Security Assertion Markup Language) is a widely adopted standard for single sign-on solutions, making it suitable for using an external trusted provider. JWT (JSON Web Token) is ideal for maintaining sessions securely and can be configured to last for an extended period, such as six months. Kerberos and RADIUS do not meet the requirement for relying on an external provider in the same way, while EAP and Remote attestation are not typically used for web application authentication.