Which of the following is an inherent weakness of signature-based intrusion detection systems?

Last Updated on December 25, 2021 by Admin 2

Which of the following is an inherent weakness of signature-based intrusion detection systems?

  • A higher number of false positives
  • New attack methods will be missed
  • Long duration probing will be missed
  • Attack profiles can be easily spoofed
Explanation:
Signature-based intrusion detection systems do not detect new attack methods for which signatures have not yet been developed. False positives are not necessarily any higher, and spoofing is not relevant in this case. Long duration probing is more likely to fool anomaly-based systems (boiling frog technique).
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments