CISA Exam-Testing Concept-IDS & IPS (Domain 5)
ฝัง
- เผยแพร่เมื่อ 30 ก.ย. 2024
- Point to remember for CISA Exam:
(1)In any given scenario, out of all three IDS (i.e. (i) signature (ii) statistics and (iii) neural network), neural network creates its own database.
(2)Of all three IDS (i.e. (i) signature (ii) statistics and (iii) neural network), neural network is more effective in detecting fraud
(3)In any given scenario, out of all three IDS (i.e. (i) signature (ii) statistics and (iii) neural network), statistical based IDS generates most false positives (false alarms).
(4)In any given scenario, out of four components of IDS (i.e. (i) sensor (ii) analyzer (iii) admin console and (iv) user interface) sensor collects the data and send to analyzer for data analysis.
(5)In any given scenario, most important concern of IDS implementation is that attacks not identified/detected by IDS.
The most common method of detection is knowledge-based detection (also called signature-based detection or pattern-matching detection).
It uses a database of known attacks developed by the IDS vendor.
Primary benefit of this method is that it has a low false-positive rate.
The second detection type is behavior-based detection (also called statistical intrusion detection, anomaly detection, and heuristics-based detection).
Behavior-based detection starts by creating a baseline of normal activities and events on the system. Once it has accumulated enough baseline data to determine normal activity, it can detect abnormal activity that may indicate a malicious intrusion or event.
LIMITATIONS OF THE IDS
The following are some of the limitations of the IDS:
IDS operate on the basis of policy definition. Weaknesses in policy definitions weaken the function of the IDS.
IDS cannot control application-level vulnerabilities.
IDS cannot control the backdoor into an application.
IDS cannot analyze the data that is tunneled into an encrypted connection.
At 10:45
A,D are true statements.
B is immaterial here.
C is a wrong implementation of IDS.
I really love your video tutorials. Please is there a comprehensive video series covering all 5 CISA domain exams?
Hi dear. You will get domainwise videos at www.cisaexamstudy.com
Very informative and simple to understand..great work...
Thank you for all of your videos! I take my exam next month!
All the best dear for your exam
did you pass?
I love your videos plz create playlist for CISA also
I love your videos plz create playlist for CISA also
Hi Lovaraju. You can access entire CISA course at following link: www.udemy.com/course/certified-in-information-system-audit/?referralCode=54D937D43960E2956A8C