Which of the following is an IDS that acquires data and…

Which of the following is an IDS that acquires data and defines a “normal” usage profile for the network or
host?

Which of the following is an IDS that acquires data and defines a “normal” usage profile for the network or
host?

A.
Statistical Anomaly-Based IDS

B.
Signature-Based IDS

C.
dynamical anomaly-based IDS

D.
inferential anomaly-based IDS

Explanation:
An IDS which is anomaly based monitors network traffic and compares it against an established baseline,
which identifies what is “normal” for that network, and the alerts the relevant party when traffic is detected which
is significantly different to the baseline.
Incorrect Answers:
B: A signature based IDS monitors packets and compares them against a database of signatures or attributes
from known malicious threats.
C: Dynamical anomaly-based IDS is not a valid IDS type.
D: Inferential anomaly-based IDS is not a valid IDS type.

https://en.wikipedia.org/wiki/Intrusion_detection_system
https://en.wikipedia.org/wiki/Anomaly-based_intrusion_detection_system



Leave a Reply 0

Your email address will not be published. Required fields are marked *

1 × four =