CISA Certified Information Systems Auditor – Question1558

Which of the following provides the MOST relevant information for proactively strengthening security settings?

A.
Bastion host
B. Intrusion detection system
C. Honeypot
D. Intrusion prevention system

Correct Answer: C

Explanation:

Explanation:
The design of a honeypot is such that it lures the hacker and provides clues as to the hacker’s methods and strategies and the resources required to address such attacks. A bastion host does not provide information about an attack. Intrusion detection systems and intrusion prevention systems are designed to detect and address an attack in progress and stop it as soon as possible. A honeypot allows the attack to continue, so as to obtain information about the hacker’s strategy and methods.