EMC Proven Professional – Technology Architect — Question 17
An attacker eavesdrops on a network to capture a consumers credentials, which can be used to hijack the consumers account.
Which mechanism should the cloud service provider deploy to mitigate the risk of an account hijacking attack?
Answer options
- A. Multi-factor authentication
- B. Firewall
- C. Access control list
- D. Encrypting data-at-rest
Correct answer: A
Explanation
Multi-factor authentication adds an additional layer of security by requiring more than just a password for access, making it harder for attackers to hijack accounts even if they obtain the credentials. A firewall, access control lists, and encrypting data-at-rest are important security measures but do not directly prevent credential theft from network eavesdropping.