Final answer:
Brute force offline is a technique where an attacker uses computational power to try different combinations of usernames and passwords based on stolen or copied authentication data, bypassing account lockout policies since the attempts are not made through the system directly.
Step-by-step explanation:
The question asks about a measure for bypassing a failed logon attempt account lockout policy. Among the options provided, c) Brute force offline is a technique that could potentially be used to circumvent account lockout policies. Account lockout policies are implemented to prevent unauthorized access by locking an account after a certain number of unsuccessful login attempts. Brute force offline attacks involve attempting to guess a user's credentials by repeatedly trying different combinations of usernames and passwords, but doing so with a copy of the authentication data, allowing unlimited attempts without triggering account lockout mechanisms. This method does not involve online interaction with the system's authentication process, hence bypassing lockouts. Options like social engineering, phishing, and two-factor authentication are not specifically measures for bypassing a lockout policy.