CISM Certified Information Security Manager – Question0794

After logging in to a web application, further password credentials are required at various application points. Which of the following is the PRIMARY reason for such an approach?

A.
To ensure access is granted to the authorized person
B. To enforce strong two-factor authentication
C. To ensure session management variables are secure
D. To implement single sign-on

Correct Answer: A