Chapter 5. Host Intrusion Prevention Overview


Host Intrusion Prevention is a relatively new category of technology in the security marketplace. Since its inception, it has gained broad acceptance, and its use is expected to grow rapidly in the future. Despite this momentum, the category is not as clearly defined as more established technologies like firewall and antivirus. Ambiguous technical literature, vague buzzwords, and rapid product evolution confuse the marketplace to the point that it is extremely difficult to even determine which products are actually Host Intrusion Prevention Systems (HIPS).

A good way to differentiate Host Intrusion Prevention products from other categories in the marketplace is to clearly define the capabilities a product should have to be a part of the category. For example, a motorcycle must have the capability to roll on two wheels whereas a car must be able to roll on four. If a vehicle has only two wheels, then it cannot be in the car category.

Another area of general confusion is what problems HIPSs can solve. A quick look at the way vendors describe their own products reveals that many do not clearly state what benefits their products offer and how they can solve a realistic business or security problem. The capabilities offered by HIPS are exciting, but irrelevant if you don't have a problem to solve and a product capable of solving it.

Even if you have a problem that a HIPS can solve, you sometimes can find better ways to resolve the issue. It would be a waste to purchase and implement a HIPS product when a simple process change or a tool you have already implemented would address the problem more effectively. Before you can use HIPS correctly, you must understand where it provides benefit and where it is limited.

This chapter describes Host Intrusion Prevention so that you understand its

  • Capabilities

  • Benefits

  • Limitations




Intrusion Prevention Fundamentals
Intrusion Prevention Fundamentals
ISBN: 1587052393
EAN: 2147483647
Year: N/A
Pages: 115

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net