CompTIA Network+ (N10-006) — Question 5
The Chief Information Officer (CIO) of an organization is concerned that the current locally-hosted, software threat solution is not agile enough. The CIO points to specific examples of zero-day threats that have recently taken a day or more to receive patches. The IT team is tasked with finding a solution that has a better chance of stopping emerging threats and stopping zero-day threats more quickly.
Which of the following solutions would have the BEST chance of meeting these goals?
Answer options
- A. Stateful firewall
- B. Premise-based IDS
- C. Host-based IDS
- D. Cloud-based anti-malware
Correct answer: A
Explanation
The correct answer is A, the stateful firewall, as it offers real-time inspection and can adapt to new threats more quickly than traditional solutions. Options B and C, premise-based and host-based IDS, focus on detecting rather than preventing attacks, which makes them less effective against zero-day threats. Option D, cloud-based anti-malware, while beneficial, may not provide the immediate response capability needed for zero-day threats compared to a stateful firewall.