Which statement best describes the action of a Network Intrusion Prevention System (NIPS)?

Study for the Computer Hacking Forensic Investigator (CHFI) v11 Test with flashcards and multiple choice questions. Each question comes with hints and explanations. Get ready to excel!

Multiple Choice

Which statement best describes the action of a Network Intrusion Prevention System (NIPS)?

Explanation:
A Network Intrusion Prevention System is intended to sit in-line on the network path so it can enforce security policies in real time by inspecting traffic and blocking malicious activity as it passes. This real-time blocking capability (dropping or resetting offending traffic) is what sets NIPS apart from passive detectors. The other descriptions describe systems that only monitor or log events, or that operate on hosts rather than the network, or that alert without taking action. Therefore, inline traffic control with the ability to block is the best description.

A Network Intrusion Prevention System is intended to sit in-line on the network path so it can enforce security policies in real time by inspecting traffic and blocking malicious activity as it passes. This real-time blocking capability (dropping or resetting offending traffic) is what sets NIPS apart from passive detectors. The other descriptions describe systems that only monitor or log events, or that operate on hosts rather than the network, or that alert without taking action. Therefore, inline traffic control with the ability to block is the best description.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy