Certified Secure Software Lifecycle Professional (CSSLP) — Question 10

Which of the following is a signature-based intrusion detection system (IDS) ?

Answer options

Correct answer: B

Explanation

The correct answer is B, StealthWatch, as it is known for its signature-based detection capabilities. RealSecure and Tripwire have different functionalities, focusing more on anomaly detection and file integrity monitoring respectively. Snort, while also an IDS, primarily functions as a network intrusion detection system that uses both signature and anomaly-based detection methods.