CompTIA Security+ (SY0-501) — Question 690
A cybersecurity analyst needs to implement secure authentication to third-party websites without users' passwords. Which of the following would be the BEST way to achieve this objective?
Answer options
- A. OAuth
- B. SSO
- C. SAML
- D. PAP
Correct answer: C
Explanation
SAML (Security Assertion Markup Language) is ideal for enabling secure authentication to third-party services without directly using user passwords, as it allows for single sign-on (SSO) capabilities. OAuth is primarily for delegated access, while SSO is a broader concept that may or may not involve SAML. PAP (Password Authentication Protocol) does not meet the goal of avoiding password usage.