COMPUTER NETWORKING

NETWORK SECURITY

INTRODUCTION

Question [CLICK ON ANY CHOICE TO KNOW THE RIGHT ANSWER]
What are cons of using a signature-based malware detection versus heuristic? (select all that apply)
A
Many attacks do not conform to specific signatures
B
Signatures require more system resources than heuristic learning
C
There are more false positives
D
Signatures must be updated often
Explanation: 

Detailed explanation-1: -However, signature-based detection has some limitations. It cannot detect new or unknown attacks, or variants of existing attacks, that do not match any signature in the database. It also has a high rate of false positives, or false alarms, when legitimate traffic is mistaken for an attack.

Detailed explanation-2: -In signature-based detection, security systems write signatures for patterns found in files containing malicious software so anti-malware programs can detect them easily. In contrast, heuristic-based scanning uses rules or algorithms to search for commands that may indicate malicious activity.

Detailed explanation-3: -A. They are unable to detect novel attacks. B. They suffer from false alarms. C. They have to be programmed again for every new pattern to be detected. D. All of the mentioned.

There is 1 question to complete.