Which of the following is NOT a two-factor authentication mechanism?
A.
Something you have and something you know.
B.
Something you do and a password.
C.
A smartcard and something you are.
D.
Something you know and a password.
Explanation:
Two-factor authentication includes two of the following three factors:
Something you know – Password
Something you have – Token
Something you are – Biometrics
A password is something you know, and cannot be used together for two-factor authentication.
Incorrect Answers:
A, B, C: This answer satisfies the requirements for two-factor authentication.Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, p. 163
“B. Something you do and a password” should be “Something you are” or “Something you have”.
D is correct ans, both something you know and a password are same so actually it’s not fulfilling two factor requirement
Agree, D is the correct answer. I just mean changing the answer B to “Something you are and a password.” will make selection easier, heh.
D is incorrect – both choices are in the same domain. Choice “A” is correct –
Something you have (Smart Card, Transponder, or maybe RFID Device) and something you know (password) would be more accurate.