contestada

which of the following describes a false positive when using an ips device? answer malicious traffic not being identified the source address matching the destination address legitimate traffic being flagged as malicious malicious traffic masquerading as legitimate traffic the source address identifying a non-existent host

Respuesta :

A false positive result can be defined as:

An alert that indicates malicious activity on a system that, upon closer inspection, reveals legitimate network traffic or behavior.

How does IPS detect malicious traffic?

Intrusion prevention systems actively scan forwarded network traffic for malicious activity and known attack patterns. The IPS engine analyzes network traffic and continuously compares the bitstream against an internal signature database for known attack patterns.

Can IPS detect malware?

Most IPS solutions are designed to detect (and if configured to prevent) attacks against known vulnerabilities. IPS solutions have additional capabilities such as real-time blacklisting (RBL), malware detection (and prevention), and application identification (and control).

To know more about false positive visit;

https://brainly.com/question/14331160

#SPJ4

ACCESS MORE
ACCESS MORE
ACCESS MORE
ACCESS MORE

Otras preguntas