CompTIA CASP+ (CAS-004) — Question 18

A company is looking to fortify its cybersecurity defenses and is focusing on its network infrastructure. The solution cannot affect the availability of the company's services to ensure false positives do not drop legitimate traffic.
Which of the following would satisfy the requirement?

Answer options

• A. NIDS
• B. NIPS
• C. WAF
• D. Reverse proxy

Correct answer: A

Explanation

NIDS (Network Intrusion Detection System) works by monitoring network traffic and alerting on suspicious activity without blocking traffic, thus maintaining service availability. In contrast, NIPS (Network Intrusion Prevention System) actively blocks traffic, which could lead to legitimate traffic being affected. WAF (Web Application Firewall) protects web applications but does not focus on overall network infrastructure. A reverse proxy can enhance security but does not specifically address the detection of intrusions.