The term hips seems to mean many things to many people, same with the word firewall. So how I describe things people might not totally agree with. This is more just so I can get a better understanding in my own mind. Some points we will see if we agree on any of them HIPS based software controls what an application is allowed to do and not allowed to do It monitors what each application tries to do and works out if a sequence of behaviour is valid Part of the monitoring is how it use the network/internet To prevent an application doing something you do not wish with the network, you need be to able to filter and block connections/packets. If those 4 points are true, then wouldn’t that mean a HIPS security app needs to be a firewall as well? or is my understanding of how people refer to HIPS wrong?