Your firm has been awarded a contract to design a Criminal Justice Information Services Version 5.0-compliant network utilizing advanced authentication policies.
Which two methods could be utilized? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D.AB.
Criminal Justice Information Services (CJIS) is a division of the FBI that provides criminal justice agencies with secure access to vital criminal justice information. CJIS Version 5.0 is the latest version of the CJIS security policy that outlines the requirements for secure access to this information. Advanced authentication policies are necessary to comply with the CJIS Version 5.0 requirements.
There are several authentication methods that can be used to comply with CJIS Version 5.0, but the question specifically asks for two methods that could be utilized.
A. Biometric Authentication: Biometric authentication uses physical or behavioral characteristics to authenticate a user. Examples of biometric authentication methods include fingerprint scanning, facial recognition, and iris scanning. Biometric authentication is highly secure because it is difficult to replicate a person's unique physical or behavioral characteristics. Biometric authentication can be used in conjunction with other authentication methods, such as a password or smart card, for added security.
B. Public Key Infrastructure (PKI): PKI is a security architecture that uses public key cryptography to secure communication between parties. In a PKI system, each user has a public key and a private key. The user's public key is used to encrypt data, while the user's private key is used to decrypt data. PKI is commonly used for digital signatures and secure email communication. PKI can be used to authenticate users by verifying their digital signatures or by using their public key to encrypt and decrypt data.
C. UKI (Unknown Key Indicator): UKI is not a recognized authentication method and is not used in CJIS Version 5.0 compliance.
D. Password: Password authentication is the most common authentication method. Users enter a username and password to access a network or application. However, password authentication is not very secure, as passwords can be easily guessed, stolen, or hacked. To increase password security, organizations can enforce password complexity requirements, implement two-factor authentication, or use password managers.
In conclusion, the two methods that could be utilized for CJIS Version 5.0 compliant network utilizing advanced authentication policies are biometric authentication and PKI.