CompTIA Security+ (SY0-601) — Question 429

Which of the following authentication methods is considered to be the LEAST secure?

Answer options

• A. TOTP
• B. SMS
• C. HOTP
• D. Token key

Correct answer: B

Explanation

The correct answer is B, SMS, as it is vulnerable to interception through various means such as SIM swapping and phishing attacks. In contrast, TOTP, HOTP, and token keys provide stronger security by generating one-time codes that are not transmitted over potentially insecure channels.