A system analyst is configuring and tuning a recently deployed IPS appliance. By examining the IPS alarm log, the analyst notices that the IPS does not generate alarms for a few known attack packets. Which term describes the lack of alarms by the IPS?

May 11, 2021 Last Updated: May 11, 2021 No Comments
Tweet Share Pin it
IT Questions BankCategory: CCNA SecurityA system analyst is configuring and tuning a recently deployed IPS appliance. By examining the IPS alarm log, the analyst notices that the IPS does not generate alarms for a few known attack packets. Which term describes the lack of alarms by the IPS?

A system analyst is configuring and tuning a recently deployed IPS appliance. By examining the IPS alarm log, the analyst notices that the IPS does not generate alarms for a few known attack packets. Which term describes the lack of alarms by the IPS?

  • true negative
  • false positive
  • false negative
  • true positive

Explanation: The alarms generated by an IPS can be classified into 4 types:
A false positive occurs when an IPS generates an alarm on normal user traffic that should not have triggered an alarm.
A false negative occurs when an IPS fails to generate an alarm after processing attack traffic the IPS is configured to detect.
A true positive occurs when an IPS generates an alarm in response to known attack traffic.
A true negative occurs when normal network traffic does not generate an alarm.

Exam with this question: CCNA Security Chapter 5 Exam Answers
Exam with this question: CCNA Security Certification Practice Exam Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments