Which identification method can enhance security against brute force attacks by requiring an additional verification step?

• A. Single sign-on system
• B. Basic authentication
• C. Two-factor authentication
• D. Password complexity requirements

Answer: (C)

The correct answer focuses on two-factor authentication, which significantly enhances security measures against brute force attacks by incorporating an additional verification step. This method requires not only a password (something the user knows) but also a second factor, which could be a one-time code sent to a mobile device or a biometric verification, like a fingerprint (something the user has or is).

This two-step process creates an extra layer of security, where even if an attacker successfully guesses or cracks the primary password, they will still be unable to access the account without the second factor of authentication. This makes it much more difficult for brute force attacks to be successful since attackers would need to bypass both layers of security.

In contrast, the other identification methods do not provide this level of security. A single sign-on system streamlines user access across multiple applications with one set of credentials but does not add an extra verification step. Basic authentication relies solely on a username and password, making it more vulnerable to brute force attacks. Password complexity requirements help create stronger passwords but do not prevent unauthorized access if the password is compromised, as they still rely on a single credential.