Computer Hacking Forensic Investigator (CHFI) — Question 52

When you are running a vulnerability scan on a network and the IDS cuts off your connection, what type of IDS is being used?

Answer options

• A. Passive IDS
• B. Active IDS
• C. Progressive IDS
• D. NIPS

Correct answer: B

Explanation

An Active IDS is designed to take action, such as terminating a connection when it detects suspicious activity, which is why it is the correct answer. A Passive IDS, on the other hand, only monitors and logs traffic without intervening, while Progressive IDS is not a standard term in this context. NIPS (Network Intrusion Prevention System) is often confused with Active IDS, but it specifically refers to a type of Active IDS that is focused on network traffic.