"Authentication credentials are called factors. There are three categories of factors:
• Knowledge (something the user knows)
--> authentication by knowledge would be a user providing a password, a personal identification number (PIN) code, or answering security questions.
• Possession (something a user has)
--> authentication by ownership or possession include the following: a one-time passcode, memory card, smartcard, and out-of-band communication.
The most common of the four is the one-time passcode sent to a device in the user’s possession.
• Inherence (something the user is)"
--> authentication by characteristic authenticates the user based on some physical or behavioral characteristic, sometimes referred to as a biometric attribute. The most used physical or physiological characteristics are as follows:
• Fingerprints
• Face recognition
• Retina and iris
• Palm and hand geometry
• Blood and vascular information
• Voice recognition
CCNP / CCIE SCOR official cert guide by Omar Santos
I'll go for biometric and knowledge factor :
Something you know - (Knowledge - password)
Something you have - (No choices)
Something you are - (Biometric - fingerprint scanning or facial recognition or voice biometry)
Currently: "Duo Push is our most commonly-used second factor of authentication, thanks to its simplicity and reliability. Users just download the Duo Mobile app and are automatically prompted to confirm each login attempt "
--> Questio: Push is knowledge-based or time-based or both? - I think both.
https://duo.com/product/multi-factor-authentication-mfa/authentication-methods/tokens-and-passcodes
2019 DUO: "Passcodes. Passcodes are the most common form of 2FA, and usually consist of a short string of numbers sent to a smartphone. Passcodes definitely count as 2FA. Since they rely on phone lines, however — which can be compromised — they represent the least secure method. Passcodes aren’t a real hit with users, either: each code must be manually entered, which can be a nuisance"
https://duo.com/blog/two-factor-authentication-the-basics
UPDATE: Push / one-time passcode is POSSESSION BASED (something a user has), but also time-based according to Cisco DUO:
"
Time-Based One-Time Passcodes
Some websites and online services let users protect their accounts with a mobile-generated passcode that must be manually entered and only works for a certain amount of time — typically 30-60 seconds. Duo Mobile can generate these time-based one-time passcodes (TOTP) for all third-party sites, letting users keep all of their accounts in one app."
https://duo.com/product/multi-factor-authentication-mfa/authentication-methods/tokens-and-passcodes
D is a given.
This page mentions Time-based is currently widely used while biometric is still up and coming.
https://www.cisco.com/c/en/us/products/security/what-is-multi-factor-authentication.html#~methods
A, B and D all are good according to Cisco.
From Cisco Site:
Knowledge
Knowledge--usually a password--is the most commonly used tool in MFA solutions. However, despite their simplicity, passwords have become a security problem and slow down productivity.
Inherent
This category includes biometrics like fingerprint, face, and retina scans.
And......
Location-based and time-based
Authentication systems can use GPS coordinates, network parameters, and metadata for the network in use, and device recognition for MFA. Adaptive authentication combines these data points with historical or contextual user data.
Cisco needs to get their stuff together...
Reference: https://www.cisco.com/c/en/us/products/security/what-is-multi-factor-authentication.html
The two most popular authentication factors are knowledge and inherent (including biometrics like
fingerprint, face, and retina scans. Biometrics is used commonly in mobile devices).
A and D is correct
I'd go with AD here, here's a reference where "Biometric Factor" is mentioned on a cisco documentation: https://www.cisco.com/c/en/us/products/security/what-is-multi-factor-authentication.html#~how-mfa-works.
D is a no brainer in my mind, that's the most common, although not the most secure...
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
NikoNiko
Highly Voted 2Â years, 9Â months agoRemiK
Most Recent 10Â months, 2Â weeks agoSegaMasterSystemAdmin
1Â year, 11Â months agobobie
1Â year, 11Â months agostalkr3
2Â years agoJessie45785
1Â year, 12Â months agoSegaMasterSystemAdmin
1Â year, 11Â months agonep1019
1Â year, 8Â months agoJessie45785
2Â years agostalkr3
2Â years agoEmlia1
2Â years, 4Â months agoJessie45785
2Â years agoNikoNiko
2Â years, 9Â months agoNikoNiko
2Â years, 9Â months agonomanlands
2Â years, 9Â months agoThusi26
2Â years, 10Â months agopohqinan
3Â years, 1Â month agoSun2sun
3Â years, 2Â months agolurker8000
3Â years, 3Â months agocoentror
3Â years, 5Â months agocoentror
3Â years, 4Â months agoMoII
3Â years, 5Â months agojaciro11
3Â years, 5Â months agoabdulmalik_mail
3Â years, 3Â months agoeazy99
3Â years, 7Â months agoNullNull88
3Â years, 5Â months ago