Systems Security Certified Practitioner (SSCP) — Question 133

Which of the following is not a two-factor authentication mechanism?

Answer options

• A. Something you have and something you know.
• B. Something you do and a password.
• C. A smartcard and something you are.
• D. Something you know and a password.

Correct answer: D

Explanation

The correct answer is D because it describes two instances of 'something you know,' which does not meet the requirement of having two different factors. Options A, B, and C all include distinct types of factors, making them valid two-factor authentication mechanisms.