CompTIA Security+ (SY0-501) — Question 294
A security administrator needs to implement a system that detects possible intrusions based upon a vendor provided list.
Which of the following BEST describes this type of IDS?
Answer options
- A. Signature based
- B. Heuristic
- C. Anomaly-based
- D. Behavior-based
Correct answer: A
Explanation
The correct answer is A, Signature based, as this type of IDS relies on predefined signatures or patterns provided by vendors to detect known threats. The other options, such as Heuristic, Anomaly-based, and Behavior-based, do not primarily depend on vendor-specific lists and instead focus on other detection methodologies.