When it comes to revoking an employee's access rights, the most difficult authentication device credential to revoke would typically be a biometric device. Biometric authentication relies on unique physical or behavioral characteristics of an individual, such as fingerprints, iris scans, or facial recognition. Once an employee's biometric data is enrolled and associated with their access rights, it becomes challenging to revoke that credential if the employee's access needs to be removed. Unlike other authentication methods, such as a traditional key lock or a card-key system, which can be physically collected or deactivated, biometric data cannot be easily changed or revoked.

It's B.

Why not b

I think it's B too.

Its A because it can be easily duplicated

proximity device is an RFID or electronic card, why this is difficult to revoke? why the answer, not a traditional lock, if an employee resigned and the key no returned? how to revoke the access? replaced a new lock and replacement of duplicate key I guess will quite troublesome.