210-255 · Question #45
Which process is being utilized when IPS events are removed to improve data integrity?
The correct answer is A. data normalization. Removing irrelevant or false-positive IPS events to clean and standardize security data is an act of data normalization.
Question
Which process is being utilized when IPS events are removed to improve data integrity?
Options
- Adata normalization
- Bdata availability
- Cdata protection
- Ddata signature
How the community answered
(19 responses)- A89% (17)
- B5% (1)
- C5% (1)
Why each option
Removing irrelevant or false-positive IPS events to clean and standardize security data is an act of data normalization.
Data normalization in a security operations context involves processing raw event data to remove duplicates, false positives, and irrelevant entries so that the remaining dataset accurately and consistently represents true security events, thereby improving data integrity and the quality of downstream analysis.
Data availability refers to ensuring that data is accessible when needed, not to the process of filtering or cleaning event records.
Data protection refers to safeguarding data from unauthorized access, loss, or corruption - not to the act of pruning IPS event logs.
Data signature is not a standard data management process; signatures are patterns used to identify threats, not a method for improving data integrity.
Concept tested: Security data normalization and IPS event management
Source: https://docs.cisco.com/en/US/products/ps6241/products_installation_and_configuration_guide_chapter09186a0080b0e4ac.html
Topics
Community Discussion
No community discussion yet for this question.