Certified Ethical Hacker (CEH v11) — Question 133
Which Intrusion Detection System is best applicable for large environments where critical assets on the network need extra scrutiny and is ideal for observing sensitive network segments?
Answer options
- A. Honeypots
- B. Firewalls
- C. Network-based intrusion detection system (NIDS)
- D. Host-based intrusion detection system (HIDS)
Correct answer: C
Explanation
The correct answer is C, as a Network-based intrusion detection system (NIDS) is designed to monitor traffic across large networks and can effectively focus on critical assets and sensitive segments. Honeypots (A) are traps for attackers, firewalls (B) control access but do not detect intrusions, and Host-based intrusion detection systems (HIDS) (D) monitor individual devices rather than the entire network.