False Positive vs Fasle Negative

coldbugcoldbug Member Posts: 189
in Security+
False Positive = The IDS identifies legitimate activity as something malicious.
How I see it = Your dog barks at you thinking you're a trespasser.

False Negative = The IDS identifies an attack as legitimate activity.
How I see it = Your dog smiles at the trespasser thinking it's you.
"If you want to kick the tiger in his ass, you'd better have a plan for dealing with his teeth."
· Share on FacebookShare on Twitter

Comments

  • TechGuru80TechGuru80 Member Posts: 1,539 ■■■■■■□□□□
    Are you asking a question or making a statement?
    Security Certification Roadmap
    · Share on FacebookShare on Twitter
  • MdaudMdaud Member Posts: 46 ■■■□□□□□□□
    Statement :)
    · Share on FacebookShare on Twitter
  • si20si20 Member Posts: 543 ■■■■■□□□□□
    That's definitely correct, however I tend to strongly dislike comparisons like this. If it helps you remember: that's really good, and keep doing it! But I find that comparisons can really simplify and take the technicality out of things. I remember someone trying to teach TOR to me and a group and he was saying things like: "imagine an envelope. Now imagine I'm sealing the envelope". And by the end of his talk, everyone was dumbfounded and didn't understand TOR and was thinking TOR was as simple as sending a letter in the post - when really, TOR is an extremely complex process.
    · Share on FacebookShare on Twitter
Sign In or Register to comment.