Exam 712-50 topic 1 question 123 discussion

Implementing a secondary authentication process (such as multi-factor authentication (MFA)) enhances security by adding another layer of protection to network access. This falls under system hardening, which refers to implementing security measures to reduce vulnerabilities in IT systems. Key aspects of system hardening include: - Enforcing strong authentication mechanisms (e.g., MFA, biometrics, smart cards). - Applying security patches and updates to mitigate vulnerabilities. - Disabling unnecessary services and protocols to reduce the attack surface. - Implementing least privilege access control to limit user permissions. This aligns with NIST SP 800-53 (AC-17, IA-2) and ISO 27001 Annex A.9 (Access Control), which emphasize securing network access through authentication and system hardening practices.

sec authentication is an added sec feature underlying defense in depth concept

A. Defense in depth cost enumerated costs Defense in depth is a cybersecurity strategy that employs multiple layers of security controls (defenses) to protect information and resources. Implementing a secondary authentication process is a classic example of adding an additional layer of security, enhancing the overall security posture by requiring multiple factors to authenticate users. This approach ensures that even if one layer of defense (e.g., primary authentication) is compromised, other layers (e.g., secondary authentication) provide additional protection.

Correct answer is A

A. Defense in depth, also referred to as Layered Security.

Each letter here seem to have more than one answer. This is either layered security or MFA or similar.

This is layered security.