Question

A device or application that monitors network traffic for malicious activity or dangerous policy violations is often referred to as ...............................

Intrusion Detection / Prevention System

DMZ segment

Firewall

Honeypot

Answer 1

Answer: Intrusion Detection / Prevention System

Step-by-step explanation:

A device or application that monitors network traffic for malicious activity or dangerous policy violations is often referred to as an Intrusion Detection / Prevention System. The Intrusion Detection System (IDS) detects and recognizes the presence of unusual activity that poses a threat to a network but it does not necessarily block this identified malicious activity whereas a firewall will filter out and block all known malware. The IDS serves to monitor and identify then raise alerts, This helps administrators to be on the outlook for identified malware and prevent future attacks.

Answer 2

A device that monitors network traffic for malicious activity or policy violation is called Intrusion detection system.

Step-by-step explanation:

Intrusion detection systems prevents from malicious activity and prevention.

There are 2 types of Intrusion detection system aka (IDS).

1. Network Intrusion detection system

Network intrusion system observes traffic passing through it and matches it against a database of known threats.

2. Host Intrusion detection system

Host intrusion system runs on device and analyze incoming and outgoing data packets of that device.