CompTIA Security+ (SY0-401) — Question 3

The network security engineer just deployed an IDS on the network, but the Chief Technical Officer (CTO) has concerns that the device is only able to detect known anomalies. Which of the following types of IDS has been deployed?

Answer options

• A. Signature Based IDS
• B. Heuristic IDS
• C. Behavior Based IDS
• D. Anomaly Based IDS

Correct answer: A

Explanation

The correct answer is A, Signature Based IDS, as it identifies threats based on predefined signatures of known anomalies. The other options, such as Heuristic, Behavior Based, and Anomaly Based IDS, are designed to detect unknown or new threats, which is not the case here.