A false positive can be defined as: – McqOptions

MCQOPTIONS

1.	A false positive can be defined as:
A.	an alert that indicates nefarious activity on a system that, upon further inspection, turns out to represent legitimate network traffic or behavior
B.	an alert that indicates nefarious activity on a system that, upon further inspection, turns out to truly be nefarious activity
C.	the lack of an alert for nefarious activity
D.	all of the above
Answer» B. an alert that indicates nefarious activity on a system that, upon further inspection, turns out to truly be nefarious activity

Discussion

No Comment Found

Related MCQs

This type of intrusion relies on the intruder's ability to trick people into breakingnormal security procedures.
In which of the following exploits does an attacker insert malicious coding into a link that appears to be from a trustworthy source?
Today, many Internet businesses and users take advantage of cryptography based onthis approach.
In what type of attack does an intruder manipulate a URL in such a way that the Web server executes or reveals the contents of a file anywhere on the server, including those lying outside the document root directory?
An intruder might install this on a networked computer to collect user ids andpasswords from other machines on the network.
This type of attack may cause additional damage by sending data containing codes designed to trigger specific actions - for example, changing data or disclosing confidential information.
One of the most obvious places to put an IDS sensor is near the firewall. Where exactlyin relation to the firewall is the most productive placement?
This is a mechanism for ensuring that only authorized users can copy or use specific software applications.
This was commonly used in cryptography during World War II.
What "layer" of an e-mail message should you consider when evaluating e-mailsecurity?