FIM tracks changes to critical files and directories, providing alerts for unauthorized or unexpected modifications.
Ensures integrity and compliance with standards like PCI-DSS.
Why This is Correct:
Specifically designed to detect and report changes in critical data.
Why Other Options Are Incorrect:
A. Application Logs: Track application events but lack specific focus on data changes.
C. SNMP Traps: Focus on network device monitoring, not file integrity.
D. Syslog: Centralizes logs but doesn’t inherently monitor data changes.
References:
EC-Council recognizes FIM as the best tool for monitoring critical data integrity.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit