Upon learning about a user who has reused the same password for the past several years, a security specialist reviews the logs. The following is an extraction of the report after the most recent password change requirement:
Which of the following security controls is the user’s behavior targeting?
A. Password expiration
B. Password history
C. Password complexity
D. Password reuse