Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location
Mob_nav_barsMENU

ISC2 SSCP Exam - Topic 9 Question 107 Discussion

Actual exam question for ISC2's SSCP exam
Question #: 107
Topic #: 9
[All SSCP Questions]

Which of the following choices describe a Challenge-response tokens generation?

Show Suggested Answer Hide Answer
Suggested Answer: A

Challenge-response tokens are:

- A workstation or system generates a random challenge string and the owner enters the string into the token along with the proper PIN.

- The token generates a response that is then entered into the workstation or system.

- The authentication mechanism in the workstation or system then determines if the owner should be authenticated.

Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, 2001, John Wiley & Sons, Page 37.

Also: HARRIS, Shon, All-In-One CISSP Certification Exam Guide, McGraw-Hill/Osborne, 2002, chapter 4: Access Control (pages 136-137).


by Na at Aug 13, 2025, 05:13 PM

Limited Time Offer

25%

Off

Get Premium SSCP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Lourdes
5 days ago
I'm not entirely sure, but I feel like option C might be related to cryptographic tokens, though it doesn't specifically mention challenge-response.
upvoted 0 times
...
Josphine
11 days ago
I think option A sounds familiar because it mentions a random challenge string, which is what we discussed in class about challenge-response systems.
upvoted 0 times
...
Carmela
17 days ago
This is a good test of our understanding of challenge-response authentication. I'm going to carefully consider each option and try to eliminate the ones that don't fit the description.
upvoted 0 times
...
Lennie
22 days ago
I'm a little confused by the wording of some of these options. I'll need to re-read them a few times to make sure I'm understanding them correctly before answering.
upvoted 0 times
...
Terina
27 days ago
Okay, let's see. I think option A is the right choice here - it describes a challenge-response token generation process where the user enters a random challenge string along with their PIN.
upvoted 0 times
...
Madelyn
1 month ago
Hmm, I'm a bit unsure about this one. I'll need to think it through carefully to make sure I understand the differences between the options.
upvoted 0 times
...
Brock
1 month ago
This one seems pretty straightforward. I'm pretty confident that option A is the correct answer.
upvoted 0 times
...
Clarinda
2 months ago
I agree with Teddy, A seems like the most logical choice for Challenge-response tokens generation.
upvoted 0 times
...
Sabrina
2 months ago
A is the correct answer. The token generates a random challenge string that the user enters along with their PIN to authenticate.
upvoted 0 times
...
Elinore
3 months ago
I disagree, I believe the answer is C, as it mentions a special hardware device.
upvoted 0 times
...
Teddy
3 months ago
I think the answer is A, because it mentions a random challenge string.
upvoted 0 times
...

Save Cancel