To answer this question, let's go through each option to understand why it is correct or incorrect:
Option A) Consistent time-out enforcement across platforms - This option is incorrect. Single sign-on (SSO) allows users to authenticate once and access multiple applications or systems without requiring them to log in again. It does not affect the time-out enforcement across platforms.
Option B) A compromised password exposes all authorized resources - This option is correct. One of the disadvantages of single sign-on is that if a user's password is compromised, it can potentially expose all the authorized resources that the user has access to. Since SSO allows users to use a single set of credentials to access multiple systems, a compromised password could grant unauthorized access to multiple resources.
Option C) Use of multiple passwords to remember - This option is incorrect. Single sign-on actually reduces the need for users to remember multiple passwords. With SSO, users only need to remember a single set of credentials to access multiple systems.
Option D) Password change control - This option is incorrect. Single sign-on does not directly affect password change control. Password change control is typically managed by an organization's password policy and can be implemented regardless of whether SSO is used or not.
The correct answer is B) A compromised password exposes all authorized resources. This option is correct because it highlights one of the disadvantages of single sign-on, which is the potential risk of a compromised password granting unauthorized access to multiple resources.