CompTIA CySA+ (CS0-003) — Question 204

A security administrator has found indications of dictionary attacks against the company’s external-facing portal. Which of the following should be implemented to best mitigate the password attacks?

Answer options

• A. Multifactor authentication
• B. Password complexity
• C. Web application firewall
• D. Lockout policy

Correct answer: B

Explanation

Implementing password complexity requirements is crucial as it ensures users create stronger passwords that are harder to guess, thus reducing the effectiveness of dictionary attacks. While multifactor authentication and lockout policies add layers of security, they do not directly address the weakness of easily guessable passwords. A web application firewall can help protect against various attacks, but it is not specifically designed to mitigate password-related vulnerabilities.