Certified Information Systems Security Professional (CISSP) — Question 337

What is the MOST effective method to enhance security of a single sign-on (SSO) solution that interfaces with critical systems?

Answer options

• A. Two-factor authentication
• B. Reusable tokens for application level authentication
• C. High performance encryption algorithms
• D. Secure Sockets Layer (SSL) for all communications

Correct answer: A

Explanation

Two-factor authentication (A) adds an extra layer of security by requiring a second form of verification, making it significantly harder for unauthorized access. While reusable tokens (B) and high performance encryption (C) contribute to security, they do not provide the same level of user verification as two-factor authentication. SSL (D) is important for secure communication but does not directly enhance the authentication process of the SSO solution.