CCSP · Question #634
CCSP Question #634: Real Exam Question with Answer & Explanation
The correct answer is A: Segregated from host systems. A network-based IDS has the advantage of being segregated from host systems, and as such, it would not be open to compromise in the same manner a host-based system would be. Although a network-based IDS would be external to system patching, this is not the best answer here becaus
Question
Although host-based and network-based IDSs perform similar functions and have similar capabilities, which of the following is an advantage of a network-based IDS over a host-based IDS, assuming all capabilities are equal?
Options
- ASegregated from host systems
- BNetwork access
- CScalability
- DExternal to system patching
Explanation
A network-based IDS has the advantage of being segregated from host systems, and as such, it would not be open to compromise in the same manner a host-based system would be. Although a network-based IDS would be external to system patching, this is not the best answer here because it is a minor concern compared to segregation due to possible host compromise. Scalability is also not the best answer because, although a network-based IDS does remove processing from the host system, it is not a primary security concern. Network access is not a consideration because both a host-based IDS and a network- based IDS would have access to network resources.
Topics
Community Discussion
No community discussion yet for this question.