False Positive vs Fasle Negative

coldbugcoldbug Posts: 189Member
False Positive = The IDS identifies legitimate activity as something malicious.
How I see it = Your dog barks at you thinking you're a trespasser.

False Negative = The IDS identifies an attack as legitimate activity.
How I see it = Your dog smiles at the trespasser thinking it's you.
"If you want to kick the tiger in his ass, you'd better have a plan for dealing with his teeth."


  • TechGuru80TechGuru80 Posts: 1,535Member ■■■■■□□□□□
    Are you asking a question or making a statement?
  • MdaudMdaud Posts: 46Member ■■□□□□□□□□
    Statement :)
  • si20si20 Posts: 465Member
    That's definitely correct, however I tend to strongly dislike comparisons like this. If it helps you remember: that's really good, and keep doing it! But I find that comparisons can really simplify and take the technicality out of things. I remember someone trying to teach TOR to me and a group and he was saying things like: "imagine an envelope. Now imagine I'm sealing the envelope". And by the end of his talk, everyone was dumbfounded and didn't understand TOR and was thinking TOR was as simple as sending a letter in the post - when really, TOR is an extremely complex process.
    Future certs: CEH v10 (maybe)
Sign In or Register to comment.