The new Chief Information Security Officer at a company has asked the security team to implement stronger user account policies. The new policies require:
* Users to choose a password unique to their last ten passwords
* Users to not log in from certain high-risk countries
Which of the following should the security team implement? (Choose two.)
To meet the company's new user account policies, the security team should implement Password History and Geofencing. Password History will ensure that users cannot choose a password that they have used in the past ten instances, satisfying the requirement for unique passwords. Geofencing, which involves creating virtual boundaries and enforcing actions based on the device or user entering or exiting those predefined areas, will prevent users from logging in from high-risk countries. Geolocation alone would only identify the location without enforcing any specific action, which does not fully meet the requirement.
Password history and Geolocation
Gelocation is not correct because geolocation stands for the location within a company, example: a certain VLAN, ip address range, so on. While geofencing is the correct term in this scenario since it limit the physical area of the authentication, in this example you don't want anyone to be authenticated in a high-risk countries. This is an example of geofencing!
This. Geofencing involves creating virtual boundaries and triggering actions based on the device or user entering or exiting those predefined areas.
The requirements say not able to login to another country( Geolocation allows that), so I go with Geofencing (which would not allow that) which is what the requirement is asking for
If it was a company with location in say the USA, there could be a geofence (perimeter) around it but it would not only stop countries that are high risk but also countries that are not banned and so it'd be too restrictive.
Took my test today and passed Geofencing is not an option on the actual test it is BC
I stand corrected. Thanks!
did you pass? hows your career 8 month after that comment?
B. Password history C. Geolocation To implement the specified user account policies, the security team should consider the following: B. Password history: This policy ensures that users cannot choose a password that they have used in the past. Users will be required to choose a password unique to their last ten passwords. This is typically managed through the password history setting. C. Geolocation: This policy involves restricting user logins based on the geographical location of the login attempt. Users are not allowed to log in from certain high-risk countries. This can be implemented using geolocation or geofencing mechanisms.
It's Geolocation because: In summary, geolocation is the process of determining a specific location, while geofencing involves creating virtual boundaries and triggering actions based on the device's entry or exit from these boundaries. So there is no action taken when device enters or exits these boundaries, the check is performed when the user tries to log in, at which point his location is checked, therefore it's geolocation
I choose BD, because "Geolocation" determines the physical location of a user, but on its own, it doesn't enforce any restrictions. It can be a component of geofencing but is not sufficient by itself.
To meet the new user account policies set by the Chief Information Security Officer, the security team should implement: B. Password history C. Geolocation Password history ensures that users cannot reuse any of their last ten passwords, which aligns with the policy requiring a unique password1. Geolocation can be used to identify and block login attempts from high-risk countries, fulfilling the second requirement of the new policies
B. Password history - This will enforce users to choose a password unique to their last ten passwords, preventing password reuse. C. Geolocation - This will enable the restriction of user logins from certain high-risk countries, enhancing security by limiting access based on geographic location. Geofencing allows organizations to define geographic zones and set up rules or policies that trigger actions or alerts when a device or user enters or exits the designated area.
B and C are correct.
From Google Geolocation uses the IP address, GPS, or Wi-Fi data of a device to determine its approximate location, while geo-fencing creates a virtual boundary around a specific area and triggers an action when a device enters or exits it.
Guys, Sir_Learnalot explains it best. Geolocation is like a technology without a policy in this case. It will tell you where the user is, but then sits there stupidly waiting for you to do something with it. Geofencing USES the geolocation to enforce it's fencing policy. comprende amigo?
Geofencing is correct. A geofence is a virtual perimeter for a real-world geographic area. Geolocation does not refer specifically to a security process, though it is meta-data used by geofencing.
ignore this - geofencing is not on some of the exam answers, so it must be wrong
For the Geolocation/Geofencing beef: Geofencing can be used to create a virtual fence or geographic boundary, outlining the company’s property. Geolocation is used to identify the location of an object, such as a mobile device. Geofencing will use geolocation to determine when a mobile device is within a geographic boundary, but geolocation without geofencing won’t detect if a user is on the company’s property. That's all the info i got from a course that i have.
Password history and Geofencing
BC - Because Geotagging means embedding of the geolocation coordinates into a piece of data (i.e., a photo). Geolocation refers to the location of the user.
I choose BC because geolocation allows you to set where a user is able to log in from geographically so you can ban all the risky countries and allow access from non risky countries. Geofencing would only allow you to access the network if you are within the perimeters of the "fence". I would assume if you need to do work in a non risky country geofencing would not be the appropriate solution. Thoughts?
BC - Geolocation determines a device's approximate location using GPS, Wi-Fi, or IP address. Geofencing creates a virtual boundary around a specific area and triggers an action when a device enters or exits it.
password history geolocation. It's not geofencing. geofencing uses geolocation. - MFA "somewhere you are" is an authentication attribute. It uses gelocation to identify the user's location. When "somewhere you are" is a factor used in MFA, geolocation is the most common method used technology used to identify a user's location. - Context Aware authentication geolocation is one of the elements that can be used in context aware authentication