An organization is replacing its internal human resources system with a SaaS-based application. The solution is multi-tenant, and the organization wants to ensure ubiquitous access while preventing password replay attacks. Which of the following would BEST help to mitigate the risk?
A. Implement destination resources authentication.
B. Require and implement two-factor authentication.
C. Remove administrator privileges from users’ laptops.
D. Combine network authentication and physical security in one card/token.