Intrusion Detection and Prevention Systems Quiz

Questions and Answers

PDF Questions PDF Answers

Which type of system can actually take action based on what is happening in the environment?

Intrusion detection system (IDS)

Signature-based system

Anomaly-based system

Intrusion prevention system (IPS) (correct)

How does a signature-based system work?

It works similarly to most antivirus systems. (correct)

It performs monitoring and alerting.

It takes a baseline of the normal traffic and activity on the network.

It refuses traffic from the source of an attack.

What is the main difference between an IDS and an IPS?

An IDS and an IPS have the same functionality.

An IDS refuses traffic from the source of an attack, while an IPS performs monitoring.

An IDS performs monitoring and alerting, while an IPS can take action. (correct)

An IDS works similarly to most antivirus systems, while an IPS takes a baseline of the normal traffic.