Home > Security Tips > Fun with Security > Infosec Know IT All Trivia: Intrusion detection
Security Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

FUN WITH SECURITY

Infosec Know IT All Trivia: Intrusion detection


Crystal I. Ferraro, Site Editor
07.21.2002
Rating: --- (out of 5)


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


Test your knowledge of intrusion detection with these trivia questions. Scroll down to the bottom of the page for the correct answers. If you get them all right, you can call yourself an Infosec Know IT All!

1.) Network-based intrusion detection procedures are considered active and include:
a. inspection of the system's configuration files to detect inadvisable settings.
b. inspection of the password files to detect inadvisable passwords.
c. the setting of mechanisms to re-enact known methods of attack.
d. inspection of system areas to detect policy violations.

2.) This type of IDS involves a wrapper or a scanner that looks for specific events. When it sees the event, it correlates it and decides whether or not it's an acceptable event.
a. anomaly detection
b. signature-based
c. blind barricade
d. profile detection

3.) True or False: Hackers can successfully mount slow attacks undetected due to the memory limitations of intrusion-detection systems.
a. True
b. False

4.) There are other places to look for evidence of an intrusion in addition to your IDS. Which of these could you analyze for evidence of an intrusion?
a. System logs
b. Telephone logs
c. File system dates and times
d. Authentication logs
e. All of the above

5.) When building a cost-benefit model for an IDS, you should include:
a. The ROI associated with protecting the corporate reputation.
b. The ROI associated with keeping the corporate stockholders happy.
c. The ROI associated with maintaining continuity of system service.
d. All of the above.






What do you think of our daily trivia questions? Are they too easy? Too hard? Do you disagree with one of our answers? Let me know.












ANSWERS:

1.) c. the setting of mechanisms to re-enact known methods of attack.
For more information on intrusion-detection systems, read Intrusion-detection systems sniff out security breaches

2.) c. blind barricade
For information on choosing the right IDS for your organization's needs, read Recommendations for deploying an intrusion-detection system, by SearchSecurity Expert Ed Yakabovicz.

3.) a. True
For more IDS rules of thumb, read this tip also written by Rebecca Gurley Bace.

4.) e All of the above.
For more information on intrusion detection, visit our Best Web Links.

5.) d. All of the above.
To learn more about ROI and budgeting for security, read this Executive Security Briefing.

Rate this Tip
To rate tips, you must be a member of SearchSecurity.com.
Register now to start rating these tips. Log in if you are already a member.




Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Fun with Security
Do you speak geek: Respecting the letter of the law
Do you speak geek: All hail e-mail!
Summer security quiz: Are you ready to go on vacation?
Quiz: Compliance
Passwords: Do you speak Geek?
Festive Season: Do you speak Geek?
Learn IT: How spam affects e-mail marketing campaigns
Infosec Know IT All Trivia: Securing Web services
Infosec Know IT All Trivia: IPsec
Infosec Know IT All Trivia: Storage security

Intrusion Detection
The best of SearchSecurity.com
Crash course: Snort
Q&A: Advanced intrusion defense
Audio webcast: Advanced intrusion defense
Presentation: Advanced intrusion defense
Security Alert: Mydoom-A
Intrusion defense
Taking aim
Comparison chart: Target-based NIDS
Target-based IDS muffles the noise to take aim on the alerts that count

Intrusion Detection
Crash course: Snort
Q&A: Advanced intrusion defense
Intrusion defense
Taking aim
IDS vs. IPS
IDS and IPS: Information security technology working together
Intrusion detection basics
Snort -- The poor man's intrusion-detection system
Intrusion detection update
Prevent internal security breaches

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Research Solutions for Network Security, Access Control and Security Threats
More Security Resources for Resellers, VARs and OEMs
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts