Statistical detection is based on observed data and uses probabilistic models to identify deviations from expected behavior (anomalies). Although it uses probability, it relies on measured data, not just theoretical assumptions. The option "Rule-based uses data known beforehand and statistical is based on assumptions" is correct because it reflects that rule-based detection uses prior knowledge (signatures or fixed rules), while statistical detection models normal behaviors (well-founded assumptions).
The option "Statistical uses the probability approach while rule-based is based on measured data" is not valid because it claims that rule-based detection is based on measured data, which is incorrect: it is based on known rules, not on statistical measurements.
This section is not available anymore. Please use the main Exam Page.200-201 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
GreyDagger
Highly Voted 6 months, 4 weeks ago2c44ebe
Most Recent 1 month, 2 weeks agoLuCKyDAM
5 months agoBen789456
10 months, 2 weeks agoRoBery
11 months ago