CompTIA CySA+ (CS0-001) — Question 199
A security analyst received an email with the following key:
Xj3XJ3LLc -
A second security analyst received an email with following key:
3XJ3xjcLLC
The security manager has informed the two analysts that the email they received is a key that allows access to the company's financial segment for maintenance.
This is an example of:
Answer options
- A. dual control
- B. private key encryption
- C. separation of duties
- D. public key encryption
- E. two-factor authentication
Correct answer: A
Explanation
The scenario demonstrates dual control, as two security analysts each have different keys required for access, ensuring that no single individual can access the financial segment alone. Private key encryption and public key encryption do not apply here as the focus is on access control rather than encryption methods. Two-factor authentication is also irrelevant since there is no mention of a second factor being used.