Host-Based Intrusion Prevention System

Why Trust Techopedia

What Does Host-Based Intrusion Prevention System Mean?

A host-based intrusion prevention system (HIPS) is a system or a program employed to protect critical computer systems containing crucial data against viruses and other Internet malware. Starting from the network layer all the way up to the application layer, HIPS protects from known and unknown malicious attacks. HIPS regularly checks the characteristics of a single host and the various events that occur within the host for suspicious activities.

Advertisements

HIPS can be implemented on various types of machines, including servers, workstations, and computers.

Techopedia Explains Host-Based Intrusion Prevention System

A HIPS uses a database of system objects monitored to identify intrusions by analyzing system calls, application logs, and file-system modifications (binaries, password files, capability databases, and access control lists). For every object in question, the HIPS remembers each object’s attributes and creates a checksum for the contents. This information gets stored in a secure database for later comparison.

The system also checks whether appropriate regions of memory have not been modified. Generally, it does not use virus patterns to detect malicious software but rather keeps a list of trusted programs. A program that oversteps its permissions is blocked from carrying out unapproved actions.

A HIPS has numerous advantages. First and foremost, enterprise and home users have increased protection from unknown malicious attacks. HIPS uses a peculiar prevention system that has a better chance of stopping such attacks as compared to traditional protective measures. Another benefit of using such system is the need to run and manage multiple security applications to protect PCs, such as anti-virus, anti-spyware, and firewalls.

Advertisements

Related Terms

Margaret Rouse
Technology expert
Margaret Rouse
Technology expert

Margaret is an award-winning writer and educator known for her ability to explain complex technical topics to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles in the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret’s idea of ​​a fun day is to help IT and business professionals to learn to speak each other’s highly specialized languages.