Answer-first summary for fast verification
Answer: Developing a strategy that integrates continuous access evaluation with other critical factors such as risk scoring, device compliance, and user behavior analytics to make dynamic access decisions.
The most effective strategy for a modern authentication and authorization framework that includes continuous access evaluation is one that combines continuous access evaluation with other authentication and authorization factors like risk scoring, device compliance, and user behavior analytics. This comprehensive approach ensures that access decisions are dynamically adjusted based on the current risk context, providing both security and flexibility. Relying solely on MFA, ignoring continuous access evaluation, or implementing SSO without continuous access evaluation would not fully leverage the capabilities of modern security frameworks to adapt to evolving threats.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your organization is in the process of designing a modern authentication and authorization strategy to enhance security. The strategy must include continuous access evaluation to dynamically assess and respond to risks in real-time. Considering the need for a comprehensive approach that balances security with user experience, which of the following strategies would be the MOST effective? Choose one option.
A
Implementing multi-factor authentication (MFA) as the sole mechanism for continuous access evaluation, without integrating additional risk assessment tools.
B
Developing a strategy that integrates continuous access evaluation with other critical factors such as risk scoring, device compliance, and user behavior analytics to make dynamic access decisions.
C
Focusing exclusively on role-based access control (RBAC) for authorization, disregarding the benefits of continuous access evaluation in modern security strategies.
D
Adopting a single sign-on (SSO) solution for simplicity, without incorporating continuous access evaluation to assess and mitigate risks in real-time.
No comments yet.