Which of the following is an expert system that uses a knowledge-based inference engine, and rule-based programming?
A. Anomaly-based IDS
B. Rule-based IDS
C. Signature-based IDS
D. Heuristic-based IDS
D
Explanation: This type of IDS is an expert system that uses a knowledge-based inference engine, and rule-based programming. The knowledge is configured as rules. The data and traffic is analyzed, and the rules are applied to the analyzed traffic. The inference engine uses its intelligent software to "learn." If characteristics of an attack are met, alerts or notifications are triggered. This is often referred to as IF/THEN or expert system.
You might also like to view...
A loop that always executes the loop body at least once is known as a _____________
Fill in the blank(s) with the appropriate word(s).
The smallest font size in a presentation should be 18 points except for text in a(n) ________
A) shape B) citation C) bulleted list D) title placeholder
When an Excel table is converted to a range, any existing filters are still applied to the data
Indicate whether the statement is true or false.
When a system needs to know the IP address for a specific FQDN, how does it know where to find the DNS server to query?
What will be an ideal response?