nerdexam
Cisco

500-265 · Question #72

500-265 Question #72: Real Exam Question with Answer & Explanation

The correct answer is B. Associate threats to known malware campaigns. CTA Detection Chain CTA consumes web access logs from web proxies, including Cisco Cloud Web Security (CWS), Cisco Web Security Appliance (WSA), and BlueCoat ProxySG. CTA processes more than 10 billion web requests daily. Through a layered approach of different machine learning t

Question

Which option describes what CTA Trust Modeling does?

Options

  • ADefine role segmentation
  • BAssociate threats to known malware campaigns
  • CProcess HTTP and HTTPS requests
  • DGroup similar requests together

Explanation

CTA Detection Chain CTA consumes web access logs from web proxies, including Cisco Cloud Web Security (CWS), Cisco Web Security Appliance (WSA), and BlueCoat ProxySG. CTA processes more than 10 billion web requests daily. Through a layered approach of different machine learning techniques, CTA is able to discard 99% of the input traffic, keeping only the traffic that represents a security risk. At a high level, CTA is composed of three layers: (1) Anomaly Detection & Trust Modeling, (2) Event Classification, Entity & User Modeling, and (3) Relationship Modeling [see Figure 2]. As we will explore below, each layer is able to keep the most significant anomalous traffic and hand it over to the next layer for deeper inspection.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 500-265 Practice