What type of information is typically logged by IDS?

The correct response emphasizes the comprehensive nature of logging performed by Intrusion Detection Systems (IDS). An IDS typically captures event details that include timestamps for when each event occurred, source and destination IP addresses involved in the detected incidents, protocol types, and often additional context about the nature of the event, such as the specific type of intrusion or attack detected. This logging is crucial for analyzing patterns, responding to incidents, and maintaining a thorough record for later investigation or reporting.

Other options, while they touch on aspects of logging, do not reflect the full scope of data captured by an IDS. For instance, only logging the source IP address would provide insufficient context for understanding the nature of the attack. Capturing just daily traffic summaries lacks the granularity needed for effective real-time analysis and forensic investigation. Finally, while logging malware signatures can be important, it is only a subset of the broader logging functionality that an IDS performs. Thus, the comprehensive event details captured in option B align with the primary role of an IDS in providing actionable security insights.