Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

QUESTION 1 Wireless networks present different problems from wired networks for

ID: 662738 • Letter: Q

Question

QUESTION 1

Wireless networks present different problems from wired networks for NIDS deployment because of the broadcast nature of transmission. Discuss the considerations that should come into play when deciding on locations for wireless NIDS sensors. (Hint: Refer to SCAR07)

QUESTION 2

A decentralized NIDS is operating with two nodes in the network monitoring anomalous inflows of traffic. In addition, a central node is present, to generate an alarm signal upon receiving input signals from the two distributed nodes. The signatures of traffic inflow into the two IDS nodes follow one of four patterns: P1, P2, P3, P4. The threat levels are classified by the central node based upon the observed traffic by the two NIDS at a given time and are given by the following table:

Threat Level

Signature

Low

1 P1 + 1 P2

Medium

1 P3 + 1 P4

High

2 P4

If, at a given time instance, at least one distributed node generates an alarm signal P3, what is the probability that the observed traffic in the network will be classified at threat level

Threat Level

Signature

Low

1 P1 + 1 P2

Medium

1 P3 + 1 P4

High

2 P4

Explanation / Answer

Question 1

Network-based IDS systems (NIDS) are often standalone hardware appliances that include network intrusion detection capabilities. It will usually consist of hardware sensors located at various points along the network or software that is installed to system computers connected to your network, which analyzes data packets entering and leaving the network.

Sensors can be deployed in one of two modes :

a)Inline. An inline sensor is deployed so that the network traffic it is monitoring must pass through it, much like the traffic flow associated with a firewall. One way to achieve an inline sensor is to combine NIDS sensor logic with another network device, such as a firewall or a LAN switch while others are simply IDPSs. The primary motivation for deploying IDPS sensors inline is to enable them to stop attacks by blocking network traffic . Inline sensors are typically placed where network firewalls and other network security devices would be placed

Related Questions

QUESTION 1 Which of the following statements is the assumption that Bohr made ab
Question #1838041
QUESTION 1 Which of the following statements is true ? Leisure only includes the
Question #1194640
QUESTION 1 Which of the following statements is true for the following reaction?
Question #592162
QUESTION 1 Which of the following statements is true? A Proteins destined for th
Question #196949
QUESTION 1 Which of the following statements is true? An investor\'s objective i
Question #2564532
QUESTION 1 Which of the following statements regarding a micro biofilm is correc
Question #141041
QUESTION 1 Which of the following substances is NOT a normal component of urine?
Question #165599
QUESTION 1 Which of the following substances is most acidic? Cow’s milk - pH 6.6
Question #593393
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
QUESTION 1 Why was salt added to the DNA mixture? Saltwater extracts DNA faster
Next
QUESTION 1 Wisdom involves using consultants Reviewing data formal education Usi

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.