An Intrusion (1) System (IDS) is a system that monitors network traffic for suspicious activity and alerts when such activity is discovered While (2) detection and reporting are the primary functions of an IDS,some IDSs are also capable of taking actions when (3) activity or anomalous traffic is detected, including(4)traffic sent from suspicious Internet Protocol(IP)addresses,Any malicious venture or violation is normally reported either to administrator or collected centrally using a(5) information and event management(SIEM)system.A SIEM system integrates outputs from multiple sources and uses alarm filtering techniques to differentiate malicious activity from false alarms.
(1)A.Detection
B.Defending
C.Definition
D.Description
(2)A.connection
B.anomaly
C.action
D.error
(3)A.normal
B.frequent
C.malicious
D.known
(4)A.receiving
B.blocking
C.replying
D.storing
(5)A.status
B.service
C.security
D.section
查看答案
信管网公众号
信管网订阅号
收藏 
考试新手指南
学习计划攻略
精华备考资料
案例论文干货
章节模拟试题
免费试听课程
考试信息推送