26) A security architect has been assigned to a new digital transformation program_ The objectives are to provide better capabilities to customers and reduce costs_ The program has highlighted the following requirements 1. Long-lived sessions are required, as users do not log in very often 2. The solution has multiple SPs, which include mobile and web applications 3. A centralized IdP is utilized for all customer digital channels 4. The applications provide different functionality types such as forums and customer portals 5. The user experience needs to be the same across both mobile and web-based applications Which of the following would BEST improve security while meeting these requirements? A) Social login to ldP, securely store the session cookies. and implement one-time passwords sent to the mobile device. Certificate-based authentication to ldP, securely store access tokens, and implement secure push notifications B) C) Username and password authentication to ldP, securely store refresh tokens_ and implement context-aware authentication. Username and password authentication to SP, securely store Java web tokens_ and implement SMS OTPs D)