A company is implementing MFA for all applications that store sensitive data. The IT manager wants MFA to be non-disruptive and user friendly. Which of the following technologies should the IT manager use when implementing MFA?
With push authentication, access requests are sent via out-of-band notifications to an associated mobile device that a user then approves or denies. its is user friendly and widely used nowadays by companies
Of the given options, push notifications are the most user-friendly and non-disruptive MFA technology that the IT manager should use when implementing MFA for all applications that store sensitive data.
Push notifications are a type of MFA where a notification is sent to a registered mobile device when the user attempts to log in. The notification contains a request to authenticate the login attempt, which can be approved or denied by the user. This is a non-intrusive way to add MFA without requiring the user to manually enter a code or use a separate hardware device.
One-time passwords (OTPs) and email tokens can also be used for MFA, but they are generally less user-friendly because they require the user to manually enter a code. Hardware authentication, such as using a physical token or smart card, can also be effective but can be more intrusive and disruptive to the user experience.
C. Push notifications--Convenience: Push authentication is a single-push solution. The user gets a notification, tap it to approve, and they are authenticated.
The correct answer is C. Push notifications.
Multi-factor authentication (MFA) is a security process that requires users to provide additional evidence of their identity beyond just a username and password. When implementing MFA, it is essential to consider user experience, convenience, and ease of use factors. Push notifications can be an effective technology for implementing MFA because they are non-disruptive and user-friendly. With push notifications, users can receive a notification on their mobile devices when they need to authenticate themselves. They can then tap on the notification to complete the authentication process, without having to enter any additional information. Onetime passwords, email tokens, and hardware authentication are other options that can be used for implementing MFA, but they may not be as user-friendly as push notifications.
Try For Free
Using Push Notifications for MFA
Multi-factor authentication (MFA) is now one of the core methods for securing user access to IT resources. Many organizations are evaluating their options for adopting MFA policies. One such option is push notification-based MFA, but what benefits does it offer over other options?
For starters, let’s first talk about MFA in general, as well as several of the MFA options available.
What is MFA?
Multi-factor authentication (also called two-factor authentication or 2FA) is the practice of requiring an additional factor beyond the standard username/password combination requested at most logins. Oftentimes, these factors are colloquially known as “something you know, something you have, and something you are.”
just to add info..
Push Notifications
While there are several other forms of MFA, such as knowledge or location-based challenges, the final method we’ll address is push notification-based MFA. Like TOTP, push notifications fall under the “On-Device Prompt” classification, meaning it’s significantly more secure than using a set of credentials alone.
But unlike TOTP, push notifications utilize smartphone notifications to assert authentication. In doing so, end users simply have to press a button on their phone to approve or deny access. If an unauthorized party attempts to access their account, they can deny them outright. End users generally find this method of MFA to be convenient. Additionally, push notification-based MFA provides increased levels of security compared to SMS MFA while avoiding the hassles of implementing physical keys.
The downside of Push Notifications is that it requires another app on your phone. Many end users are reluctant to add additional applications, so this can stunt the roll-out of Push-based MFA.
https://jumpcloud.com/blog/push-notification-mfa
Push authentication makes it easy to enable multi-factor authentication (MFA). When the user combines push authentication with the locking function of his or her smartphone, this establishes a viable form of MFA. The user’s registered phone acts as the first authentication factor (something you have), and the phone’s Touch ID, FaceID (something you are), or PIN (something you know) is the second.
This section is not available anymore. Please use the main Exam Page.SY0-501 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Waffa
Highly Voted 4Â years, 7Â months agothisguyfucks
Most Recent 2Â years agoSophyQueenCR82
2Â years, 1Â month agoAlizadeh
2Â years, 4Â months agofonka
3Â years, 9Â months agoprntscrn23
3Â years, 9Â months agoEddyC
3Â years, 9Â months agoStickyMac
3Â years, 11Â months agoHeymannicerouter
3Â years, 11Â months agowazards
4Â years, 3Â months agoHash___
4Â years, 3Â months ago