CompTIA CySA+ (CS0-001) — Question 88

Malicious users utilized brute force to access a system. An analyst is investigating these attacks and recommends methods to management that would help secure the system. Which of the following controls should the analyst recommend? (Choose three.)

Answer options

• A. Multifactor authentication
• B. Network segmentation
• C. Single sign-on
• D. Encryption
• E. Complexity policy
• F. Biometrics
• G. Obfuscation

Correct answer: A, E, F

Explanation

Multifactor authentication (A) adds an extra layer of security beyond just a password, making it harder for attackers to gain access. A complexity policy (E) helps ensure that passwords meet certain standards, making them more difficult to crack. Biometrics (F) provides a unique authentication method that is difficult to replicate. Options B, C, D, and G do not specifically address the brute force attack vector as effectively as the selected measures.