What is the impact of false positive alerts on business compared to true positive?
A. True positives affect security as no alarm is raised when an attack has taken place, resulting in a potential breach.
B. True positive alerts are blocked by mistake as potential attacks affecting application availability.
C. False positives affect security as no alarm is raised when an attack has taken place, resulting in a potential breach.
D. False positive alerts are blocked by mistake as potential attacks affecting application availability.
B. True positive alerts are blocked by mistake as potential attacks affecting application availability.
C is incorrect:
Ref: https://csrc.nist.gov/glossary/term/false_positive
False Positive: An alert that incorrectly indicates that a vulnerability is present.
According to the definition, D is the correct answer:
D. False positive alerts are blocked by mistake as potential attacks affecting application availability.