Which of the following is an expert system that uses a knowledge-based inference engine, and rule-based programming?

A. Anomaly-based IDS
B. Rule-based IDS
C. Signature-based IDS
D. Heuristic-based IDS

D
Explanation: This type of IDS is an expert system that uses a knowledge-based inference engine, and rule-based programming. The knowledge is configured as rules. The data and traffic is analyzed, and the rules are applied to the analyzed traffic. The inference engine uses its intelligent software to "learn." If characteristics of an attack are met, alerts or notifications are triggered. This is often referred to as IF/THEN or expert system.

Computer Science & Information Technology

You might also like to view...

A(n) ________ helps to reduce editing time when there is a common value in a field

A) default value B) validation rule C) input mask D) data macro

View

Computer Science & Information Technology

A(n) ________ is the area of blank space that displays to the left, right, top, and bottom of a document

A) margin B) tab C) indent D) border

View

Computer Science & Information Technology