The Antivirus software installed to scan and monitor malware activities on a server or workstation would be identified as a __________ based intrusion detection/prevention system. Are wireless deployment mistakes to avoid, except for ________________?


3 Answers

Danielle Joynson Profile
There are numerous antivirus software programs available but they all fall into three main categories, Signature-based detection, Heuristic-based detection and File emulation.
The most common type is Signature-based detection. It identifies malware and viruses by matching it to an established lexicon of virus traits. The whole will be searched as viruses can embed themselves in existing files, the blighters.
Heuristic-based detection can be used to identify unknown viruses as it investigates the deep lying genetic code of a virus and compares it to an established database of known viruses.
File emulation involves running a program in a protective virtual environment and noting the actions the program performs. If the actions are not the desired ones, the software will determine the program as malicious and will carry out the appropriate disinfection.
You are most likely looking at a Host Intrusion Prevention System. HIPS are anti-virus or malware programs that will protect individual workstations.
There are other types, such as Network Intrusion Prevention Systems, but as you’re looking at a standalone server or workstation, stick with HIPS as NIPS does not offer local protection such as someone whacking an infected pen drive into your work station.
Regarding wireless deployment mistakes, the most common is the failure to use a base64 password, closely followed by not planning for future applications, not having enough capacity (which will affect performance) and a lot of people don’t implement any form of analytical software. It’s best to work with an experienced deployment partner.
Jennifer Bone Profile
Jennifer Bone answered
"Host-based".  A Host Intrusion Prevention System or HIPS is a security program that will protect individual computers (aka 'hosts') against viruses and other internet malware.

Other types would include Network Intrusion Prevention Systems which can protect against a network attack but not other attacks that would include, for example, an infected program in a portable USB drive/pen drive and Host Intrusion Detection Systems which will detect but cannot stop an attack.
Anonymous Profile
Anonymous answered

Whatever antivirus you choose, I would recommend you to learn more about McAfee. It's one of the most advanced in its field. If you interested to learn more about it then you can check out an article about is McAfee a good antivirus or not. You can read more about it here. Hope you would like it and it will help you to solve the problem.

Answer Question