What type of prevention methods are included in security practices?

The selection of IPS (Intrusion Prevention System) and WAF (Web Application Firewall) as effective security prevention methods is rooted in their core functions to protect systems from malicious activities. An IPS monitors network traffic for suspicious patterns and can respond in real time to block potentially harmful traffic. This active monitoring and response capability is essential for preventing breaches before they can affect a system.

Similarly, a WAF protects web applications by filtering and monitoring HTTP traffic between a web application and the Internet. It is specifically designed to safeguard against attacks like SQL injection and cross-site scripting, which are common vulnerabilities that can lead to exploitation. Both methods serve as proactive defenses that can identify and mitigate threats before they cause harm.

When considering other options, while data encryption and VPN are important for ensuring the confidentiality and integrity of data, they are not active prevention methods against intrusion attempts. Identity security and access control focus more on managing user permissions and roles rather than preventing attacks. Active defense and key management involve response strategies and risk management rather than direct prevention measures. Therefore, the integration of IPS and WAF clearly highlights a focus on active threat prevention within security practices.