Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
Sending a one-time password to the user's mobile phone will satisfy which of these authentication strategies?
what the user knows
what the user sees
what the user has
what the user is
Sending the one-time password (OTP) to the registered mobile number will authenticate the user because the user will have possession of the mobile phone. This is not "'what user is" because the OTP does not pertain to biometrics. This is not "what user knows" because the user will not know the OTP until it sent. The other two options do not refer to authentication strategies.
A bit misleading. The password on the phone is an intermediate step. The user cognitively learns the password when they read it from the phone. The phone does not actually enter the password and is not used for authentication proper. It is essentially a secure delivery mechanism for the user to become aware of what the password is. The phone is not the mechanism of authentication. The password is entered by the user who upon reading it, now "KNOWS" it and inserts it into whatever authentication mechanism is being used. A similar question in this series identified this as "what the user knows", so there is not consistency in the question base - unless the answer here is changed to "what the user knows".
(editor #2: No change needed, I think it's good as is. If the user does not have a mobile phone, they can't receive a password directed to their phone, can they? An OTP directed to your phone, while posing its own type of security risks, satisfies both the "something you have" and "something you know" requirements according to https://www.wired.com/2016/06/hey-stop-using-texts-two-factor-authentication/ and https://www.symantec.com/connect/blogs/guide-two-factor-authentication -- plus, a mobile phone authenticator app serves as enough of "something you have" for sites like Facebook in any case. I would call this a trick question rather than a wrong one. )
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.