CompTIA CySA+ (CS0-003) — Question 327

Which of the following is the best authentication method to secure access to sensitive data?

Answer options

• A. An assigned device that generates a randomized code for log-in
• B. Biometrics and a device with a personalized code for log-in
• C. Alphanumeric/special character username and passphrase for log-in
• D. A one-time code received by email and push authorization for log-in

Correct answer: B

Explanation

Option B is the best authentication method because it combines biometrics, which are unique to the individual, with a personalized code, enhancing security. Option A, while secure, relies solely on a device-generated code, lacking the uniqueness of biometrics. Option C is less secure due to the vulnerability of alphanumeric passwords to attacks. Option D relies on email and push notifications, which can be intercepted, making it less secure than the biometric approach.