During an operational audit of a biometric system used to control physical access, which of the following should be of GREATEST concern to an IS auditor?
During an operational audit of a biometric system used to control physical access, which of the following should be of GREATEST concern to an IS auditor?
When auditing a biometric system used to control physical access, the greatest concern should be false positives. False positives occur when the system incorrectly grants access to unauthorized individuals, posing a significant security risk. This compromises the integrity and security of the controlled area, potentially allowing unauthorized access to sensitive areas or information. While false negatives (denying access to authorized users) are also an issue, the immediate risk to security from unauthorized access is generally considered more critical.
A- False Positive.. giving access to persons who should not be given access is a concern..
C- False negative is correct. An instance in which a security tool intended to detect a particular threat fails to do so
C for sure
Why is that?
False negatives occur when the biometric system fails to correctly identify an authorized user, leading to a denial of access to individuals who should be granted access
False positive leads to unauthorized access in this case
Answer is False Positive. A If you are reading this, don’t be confused
Q: the GREATEST concern for a biometric system used to control PHYSICAL access Answer: C - False Negative if it was about a biometric system used to control logical access then the greatest concern is A False Positive
I completly disagree with letter C. Given unauthorized people to access any place is a greatest concern that not granting an allowed person to it. It's unauthorized access.
c. should be more concerning coz it affects the business if authorized users are not allowed
False negative is a concern but the IS auditor's convern. Auditor is concerned more with false positives.