You want to use Sky ATP to protect your network; however, company policy does not allow you to send any files to the cloud. Which Sky ATP feature should you use in this situation?
A.
Only use on-premises local Sky ATP server anti-malware file scanning.
B.
Only use cloud-based Sky ATP file hash lookups.
C.
Only use on-box SRX anti-malware file scanning.
...
Hash lookup only – Instead of the file, a sha256 hash of the file is sent for matching against known malware. This may provide a faster result because only a matching of the hash is done and all the file data does not have to be sent. The danger here is that the hash will only match known malware. If the file is a new type of malware that is not known, it will not be recognized as malicious using this method.
https://www.juniper.net/documentation/en_US/release-independent/sky-atp/topics/task/configuration/sky-atp-device-profiles-create.html
they are becoming more and more like cisco with their open ended questions :/
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Rowdy_47
3 months agoHuyLe382
4 months, 3 weeks ago