PrepAway - Latest Free Exam Questions & Answers

Which of the following is an IDS that acquires data and…

Which of the following is an IDS that acquires data and defines a “normal” usage profile for the network or
host?

PrepAway - Latest Free Exam Questions & Answers

A.
Statistical Anomaly-Based IDS

B.
Signature-Based IDS

C.
dynamical anomaly-based IDS

D.
inferential anomaly-based IDS

Explanation:
An IDS which is anomaly based monitors network traffic and compares it against an established baseline,
which identifies what is “normal” for that network, and the alerts the relevant party when traffic is detected which
is significantly different to the baseline.
Incorrect Answers:
B: A signature based IDS monitors packets and compares them against a database of signatures or attributes
from known malicious threats.
C: Dynamical anomaly-based IDS is not a valid IDS type.
D: Inferential anomaly-based IDS is not a valid IDS type.

https://en.wikipedia.org/wiki/Intrusion_detection_system
https://en.wikipedia.org/wiki/Anomaly-based_intrusion_detection_system


Leave a Reply