Signature-based detection in an IDS cannot detect unknown attacks; it can detect only those attacks identified by published signature files. For this reason, it is important to update signature files regularly.

WHAT IS A FIREWALL IN NETWORK SECURITY

Please wait while the activity loads.
If this activity does not load, try refreshing your browser. Also, this page requires javascript. Please visit using a browser with javascript enabled.

If loading fails, click here to try again

Question [CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]

A	True
B	False
C	Either A or B
D	None of the above

Explanation:

Detailed explanation-1: -Definition of signature-based detection : noun An approach to detecting mallware in which a unique identifier, normally a specific string of code or the hash of known malicious code, is established as associated with some piece of malware.

Detailed explanation-2: -Explanation. Snort is a signature-based intrusion detection system. Snort is an open source network intrusion prevention and detection system that operates as a network sniffer.

Detailed explanation-3: -Explanation. Zero day attacks are new vulnerabilities for whom the signatures haven’t been created and hence signature based IDS are useless in detecting such attacks.

Detailed explanation-4: -Signature-based ID systems detect intrusions by observing events and identifying patterns which match the signatures of known attacks. An attack signature defines the essential events required to perform the attack, and the order in which they must be performed.

There is 1 question to complete.

FUNDAMENTALS OF COMPUTER

COMPUTER THREATS SECURITY

WHAT IS A FIREWALL IN NETWORK SECURITY