CompTIA Security+ (SY0-701) — Question 11
An enterprise has been experiencing attacks focused on exploiting vulnerabilities in older browser versions with well-known exploits. Which of the following security solutions should be configured to best provide the ability to monitor and block these known signature-based attacks?
Answer options
- A. ACL
- B. DLP
- C. IDS
- D. IPS
Correct answer: D
Explanation
The correct answer is D, IPS, as it actively monitors network traffic and can block known signature-based attacks in real-time. An ACL (A) is a list of rules that controls network traffic but does not monitor or block attacks. DLP (B) focuses on preventing data loss and is not specifically designed for blocking exploits. IDS (C) detects and alerts on threats but does not take action to block them.