In authentication, Multi-Factor Authentication (MFA) involves using more than one category of authentication factors:
Something you know (e.g., password)
Something you have (e.g., RFID badge, token)
Something you are (e.g., biometrics like fingerprints, facial recognition, gait)
In this scenario:
The RFID badge is "something you have" (a physical object).
The gait recognition (walking pattern) captured by the camera is a biometric—"something you are" (a physical characteristic).
Together, these two methods represent two distinct authentication factors, thereby implementing true multi-factor authentication.
Reference – CEH v13 Official Study Guide:
Module 5: System Hacking
Topic: Authentication Mechanisms
Quote:
“Examples of multi-factor authentication include combining biometrics (something you are) with a smart card or badge (something you have). Gait recognition is considered a behavioral biometric and falls under ‘something you are’.”
Incorrect Options Explained:
A. Incorrect — gait and RFID represent two separate factor types, not one.
C. No evidence in the scenario supports high false positives.
D. Gait analysis is a recognized biometric method and can be used for identification.
