Which three statements about host-based IPS are true? (Choose three)
Which three statements about host-based IPS are true? (Choose three)
Host-based intrusion prevention systems (HIPS) are designed to monitor and analyze the internal behavior of a host for malicious activities. They can view encrypted files because they operate within the operating system and have access to files in decrypted form when they are being used by applications. They can also have more restrictive policies than network-based IPS since they can be tailored to the specific needs and configurations of each host. Additionally, HIPS can use signature-based policies to identify known threats. By evaluating the possible answers against these principles, the correct three statements about host-based IPS are: It can view encrypted files, It uses signature-based policies, and It can have more restrictive policies than network-based IPS. Therefore, the correct options are A, C, and D.
A, D, F
Which three statements about host-based IPS are true? (Choose three.) A. It can view encrypted files. B. It can have more restrictive policies than network-based IPS. C. It can generate alerts based on behavior at the desktop level.