ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 391 discussion

Actual exam question from Isaca's CISA
Question #: 391
Topic #: 1
[All CISA Questions]

Which of the following is the BEST indicator of the effectiveness of signature-based intrusion detection systems (IDSs)?

  • A. An increase in the number of internally reported critical incidents
  • B. An increase in the number of unfamiliar sources of intruders
  • C. An increase in the number of identified false positives
  • D. An increase in the number of detected incidents not previously identified
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Deeplaxmi at Oct. 2, 2022, 6:17 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
topikal
1 year ago
Selected Answer: D
tricky wording but the right answer is D
upvoted 1 times
...
Swallows
1 year ago
Selected Answer: D
Signature-based intrusion detection systems work by comparing network traffic or system activity against a database of known attack signatures or patterns. The primary goal is to detect and alert on known threats based on predefined signatures.
upvoted 3 times
...
a84n
1 year, 1 month ago
Selected Answer: C
Answer C. An increase in the number of identified false positives indicates that the IDS is actively detecting and flagging potential threats based on known signatures.
upvoted 1 times
...
AB1237
1 year, 9 months ago
Selected Answer: A
Isnt it A? Increase in no. of internally reported critical incidents? Since signature based IDS consists of pre fed information about what attacks to look out for, and this option address that?
upvoted 2 times
...
starzuu
1 year, 10 months ago
D is also not correct because signature based IDS is not Heuristic IDS meaning it can only indicate KNOWN malicious activities.
upvoted 2 times
...
Deeplaxmi
2 years, 8 months ago
D- increase in number of DETECTED but not previously identified incidents is correct
upvoted 1 times
MohamedAbdelaal
2 years, 2 months ago
hhhhh You got all the right
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel