pertanyaan:
- Why is MFA significantly more secure than a password alone?
- Explain Role-Based Access Control (RBAC) and how it helps enforce the principle of least privilege.
- What are the security risks associated with not deactivating employee accounts immediately after they leave the company?
status: 100%
keterangan: saya sudah mengerjakan dengan baik dan benar
bukti:
1.
MFA (multi-factor authentication) is much more secure than using a password alone because it does not rely on a single form of identity verification. A password is “something you know,” and the problem is that this can be easily exposed through phishing, data breaches, brute-force attacks, or by being reused across multiple services. Once a password is known by someone else, the account can usually be taken over immediately.
With MFA, the system does not rely on the password alone but requires an additional factor such as “something you have” (for example, a phone, an authenticator app, or a hardware key) or even “something you are” such as a fingerprint or facial recognition. This means that even if the password is stolen, an attacker still cannot log in without access to the second factor.
2.Role-Based Access Control (RBAC) is a security model where access to systems and resources is granted based on a user’s role within an organization, rather than assigning permissions individually to each user. A role represents a collection of permissions that define what someone in that position is allowed to do.
