Which four statements are true about the Cisco IPS global correlation and reputation filtering features? (Choose four.)

A.
Reputation filtering can adjust the risk rating of an alert.

B.
Reputation filtering can be set to permissive, standard, or aggressive.

C.
Global correlation can be trialed in with a test mode.

D.
Reputation filtering can drop packets from untrusted source IP addresses.

E.
Both global correlation and reputation filtering leverage Cisco SenderBase.

F.
Global correlation can adjust the risk rating of an alert.

Explanation:
http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/idm/idm_collaboration.ht ml#wp1056492
Global Correlation Requirements
Global correlation has the following requirements:
Valid license–You must have a valid sensor license for global correlation features to function. You can still configure and display statistics for the global

correlation features, but the global correlation databases are cleared and no updates are attempted. Once you install a valid license, the global correlation
features are reactivated.
Agree to Network Participation disclaimer
External connectivity for sensor and a DNS server–The global correlation features of IPS 7.0 require the sensor to connect to the Cisco SensorBase Network.
Domain name resolution is also required for these features to function. You can either configure the sensor to connect through an HTTP proxy server that has a
DNS client running on it, or you can assign an Internet routeable address to the management interface of the sensor and configure the sensor to use a DNS
server. In IPS 7.0 the HTTP proxy and DNS servers are used only by the global correlation features