In: Computer Science
A business-critical application is unable to support the
requirements in the current password
policy because it does not allow the use of special characters.
Management does not want to accept
the risk of a possible security incident due to weak password
standards. Which of the following is an
appropriate means to limit the risks related to the
application?
A. A compensating control
B. Altering the password policy
C. Creating new account management procedures
D. Encrypting authentication traffic
The most appropriate means to limit the risks related to the application is:
B. Altering the password policy
Explanation: Altering the password policy to allow the usage of special characters will allow the organization to get rid of the possible security incident.