CompTIA Cloud+ Practice Test

What cloud feature would MOST likely enhance user security by preventing password replay attacks?

• A. Federated identity management.
• B. Multi-factor authentication.
• C. Access control lists.
• D. Encryption protocols.

The correct answer is: Multi-factor authentication.

Multi-factor authentication enhances user security by requiring more than one form of verification before granting access. This typically combines something the user knows (like a password) with something the user has (like a smartphone app or a hardware token), making it significantly more difficult for attackers to compromise accounts. In the case of password replay attacks, where attackers capture and reuse passwords to gain unauthorized access, multi-factor authentication provides an additional layer of security. Even if a password is intercepted, the attacker would still need the second factor of authentication to access the user's account. This makes it far more secure compared to relying solely on passwords, which can be vulnerable to various attacks, including phishing and password theft. While other options such as federated identity management, access control lists, and encryption protocols contribute to overall security, they do not directly prevent password replay attacks to the same extent as multi-factor authentication does. Federated identity management simplifies user access across different systems but does not specifically add security against password replay. Access control lists define permissions for resources but do not address the initial authentication phase. Encryption protocols protect data in transit or at rest but do not enhance the authentication process itself. Therefore, multi-factor authentication stands out as the most effective measure to mitigate the risk of password replay attacks.