Keith, a network administrator, has been asked to passively monitor network traffic for potential malicious activities to the company's sales websites. Which of the following would be BEST suited for this task?
Answer Description
A Network Intrusion Detection System (NIDS) passively monitor network and systems for malicious activities.
Wikipedia
An intrusion detection system (IDS) is a device or software application that monitors a network or systems for malicious activity or policy violations. Any malicious activity or violation is typically reported either to an administrator or collected centrally using a security information and event management (SIEM) system. A SIEM system combines outputs from multiple sources, and uses alarm filtering techniques to distinguish malicious activity from false alarms.
While there are several types of IDS, ranging in …
Intrusion detection system - Wikipedia, the free encyclopedia