ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 112 discussion

Actual exam question from CompTIA's CAS-004
Question #: 112
Topic #: 1
[All CAS-004 Questions]

A company's Chief Information Officer wants to implement IDS software onto the current system's architecture to provide an additional layer of security. The software must be able to monitor system activity, provide information on attempted attacks, and provide analysis of malicious activities to determine the processes or users involved.
Which of the following would provide this information?

  • A. HIPS
  • B. UEBA
  • C. HIDS
  • D. NIDS
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by dangerelchulo at Sept. 2, 2022, 9:57 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
beanbag
Highly Voted 1 year, 8 months ago
Selected Answer: C
HIDS will provide the granularity required. HIDS monitor systems' activity, threat, processes, users involved. NIDS monitors mostly network traffic and not the processes INSIDE the hosts until they try to extend in the netflow logs
upvoted 11 times
...
sh4dali
Highly Voted 1 year, 7 months ago
Selected Answer: C
It's HIDS. UEBA is not a SW.
upvoted 8 times
Meep123
7 months, 3 weeks ago
Apparently UEBA is, or can be, a software, but is not in the IDS category, which the question is requiring.
upvoted 1 times
...
...
BiteSize
Most Recent 10 months ago
Selected Answer: C
Question wants "IDS" "system activity" HIDS= Host "System" Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)
upvoted 2 times
...
dangerelchulo
1 year, 8 months ago
Selected Answer: B
Key word is monitory system activity, UEBA looks for user level pattern changes and alert https://digitalguardian.com/blog/what-user-and-entity-behavior-analytics-definition-ueba-benefits-how-it-works-and-more
upvoted 3 times
adamwella
1 year, 7 months ago
The question clearly states "software must be able to monitor SYSTEM activity". UEBA is not an IDS.. The answer is clearly HIDS. A simple google search should confirm this..
upvoted 8 times
...
ukuwai
1 year, 8 months ago
They trick us, as UEBA is not an IDS which is stated in the scenario
upvoted 5 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago