Complete the code to identify the type of IDS that monitors network traffic.
The IDS that analyzes network packets is called a [1] IDS.A Network-based IDS monitors network traffic to detect suspicious activity.
Complete the sentence to describe the IDS detection method.
An IDS that detects attacks by comparing activity to known patterns uses [1] detection.Signature-based detection uses known attack patterns to identify threats.
Fix the error in the IDS description.
A [1] IDS is installed on individual devices to monitor system activity.Host-based IDS runs on individual devices to monitor their activity.
Fill both blanks to complete the IDS detection logic.
An IDS triggers an alert if the activity [1] the normal behavior or [2] a known attack pattern.
Anomaly-based IDS alerts when behavior deviates from normal, and signature-based IDS alerts when activity matches known attacks.
Fill all three blanks to complete the IDS components description.
The main components of an IDS are [1], [2], and [3], which work together to detect and respond to threats.
An IDS typically includes sensors to collect data, analyzers to interpret it, and response systems to act on threats.