Which security principle is enforced when employees must use unique login credentials and keycards for access? Learn how zero trust security mandates strict identity verification for every user and device—key for the Cisco Certified Support Technician (CCST) Cybersecurity 100-160 exam.
Table of Contents
Question
A company requires employees to use unique login credentials and keycards for building access. What security principle does this support?
A. Defense in depth
B. Role-based access control
C. Principle of least privilege
D. Need-to-know
E. Zero trust
Answer
E. Zero trust
Explanation
Zero trust enforces strict identity verification for every user and device attempting access.
Requiring employees to use unique login credentials and keycards for building access supports the zero trust security principle.
Zero trust is a security framework based on the idea that no user or device—inside or outside the organization—should be trusted by default. Every access request must be authenticated, authorized, and continuously validated before granting access to resources or physical locations.
This approach enforces strict identity verification for both digital (login credentials) and physical (keycards) access, ensuring that only legitimate users and devices can access company systems and facilities.
Zero trust incorporates multiple security layers, such as multi-factor authentication (MFA), microsegmentation, continuous monitoring, and access controls, to minimize the risk of unauthorized access and lateral movement within the network.
By requiring unique credentials and keycards, the company ensures that each access attempt is individually verified, aligning with the zero trust model’s “never trust, always verify” philosophy.
While least privilege is a core component of zero trust, the broader zero trust framework encompasses continuous verification and strict authentication for every access event, not just limiting permissions.
Zero trust enforces strict, continuous identity verification for every user and device attempting access, both digitally and physically, ensuring robust protection against unauthorized entry.
Cisco Certified Support Technician (CCST) Cybersecurity 100-160 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Cisco Certified Support Technician (CCST) Cybersecurity 100-160 exam and earn Cisco Certified Support Technician (CCST) Cybersecurity 100-160 certification.