What is the purpose of an Intrusion Detection System (IDS)?

  1. Monitor network traffic and systems to detect unauthorized access and attacks ✓
  2. Encrypt data
  3. Manage user access
  4. Prevent all attacks

Correct answer: Monitor network traffic and systems to detect unauthorized access and attacks

Option A is correct because an Intrusion Detection System passively monitors network traffic and system activity, comparing observed behavior against known attack signatures or baseline profiles to detect and alert on unauthorized access attempts and malicious activity. Option B is incorrect because data encryption is the responsibility of protocols such as TLS or tools such as BitLocker, not an IDS. Option C is incorrect because managing user access, including authentication and authorization, is the function of identity and access management systems, not an IDS. Option D is incorrect because an IDS is a detection and alerting tool only; it does not actively block or prevent attacks, which is the role of an Intrusion Prevention System (IPS).

Topic: Security Operations · ids, intrusion detection, network security, comptia security+

Practice CompTIA Security+ (SY0-701) Questions Free