written assignment 5 si
Q1: Discuss the differences between an anomaly-based and a misuse-based detection model? Which would you use to protect a corporate network of 10,000 users? Why would you choose that model?
Q2: Pick three technologies discussed in this chapter and describe how you deploy them to protect a small business network. Describe the protection each technology provides?