An attack that keeps changing in relatively trivial ways to avoid signature-based detection is sometimes said to be:Question 5Select one:a.dynamicb.unsophisticatedc.polymorphicd.trivial

What does a signature-based IDS use to identify attacks?answerComparison of current statistics to past statisticsStatistical analysis to find unusual deviationsExceeding threshold valuesComparisons to known attack patterns

Signature based detection is the most common type of detectionQuestion 3AnswerTrueFalse

Patterns for signature based detection could include ports and hashes.Question 8AnswerTrueFalse

IDS signatures are usually based off of patterns and not heuristicsQuestion 4AnswerTrueFalse

The consortium are interested in implementing signatures into the crypto-system. The goal is to provide an authentication mechanism which allows a recipient to see from whom the message originated. The consortium leader considers several options for how to implement this mechanism. State whether or not each option is secure, and provide a justification. Suppose Aldebaran wishes to send a message to Borealis, and Aldebaran possesses a signing keypair (sk′A, pk′A). (Hint: think about what eavesdroppers can learn about the identities of senders) Aldebaran computes σ = Sign(sk′A, m), and cσ =Enc(pkC, σ).Aldebaran sends this ciphertext along with their usual broadcast(pkC, cdest, cmsg). Chandra performs her usual steps, as well as decrypting to obtain σ =Dec(skC, cσ). She sends it along with her usual broadcast (pkB, c′msg) for Borealis. Lastly, Borealis, decrypts to obtain the message m. Borealis believes the message should have come from Aldebaran. He runs Verify(pk′A, m, σ) and is satisfied only if the signature accepts.