Match each item with a statement below.
A. A possible indicator of an incident
B. A probable indicator of an incident
C. A definite indicator of an incident
D. A form of alarm clustering that is based on frequency or similarities
E. The process of classifying the attack alerts an IDPS detects
F. Examines data traffic in search of patterns that match predetermined attack patterns
G. Monitors traffic on a segment of an organization's network
H. Collects statistical summaries of normal traffic to establish a baseline
I. Works on the principle of configuration or change management
A. unusual consumption of computing resources
B. presence of unexpected new accounts
C. changes to logs
D. alarm compaction
E. alarm filtering
F. signature-based IDPS
G. network-based IDPS
H. behavior-based IDPS
I. host-based IDPS
You might also like to view...
_____ are snow white when immature birds, but the adults are a dark blue, almost black, color
a. Snow heron b. Little blue heron c. White heron d. Black heron
On the surface of a tuber are several buds called:
a. Ears c. Nodes b. Eyes d. Bulbs
Use KCL to determine the unknown currents in the circuit of Figure P2.13. Assume i0 = 2 A and i2 = ?7 A.
What will be an ideal response?
Which of the following terms is often used to describe a truck safety pressure relief valve?
A. emergency relay valve B. quick release valve C. pop-off valve D. inversion valve