What is a difference between HIDS and HIPS?

Discussion in 'other anti-malware software' started by adam993, Aug 25, 2011.

Thread Status:
Not open for further replies.
  1. adam993

    adam993 Registered Member

    Joined:
    Jul 22, 2009
    Posts:
    203
    Location:
    Poland
    What is a difference between HIDS and HIPS? I guess that WinPatrol is a HIDS-based monitor, but Malware Defender is a classical, strong HIPS monitor.
    Does anyone can explain it?
    Thanks,
    Adam
     
  2. gerardwil

    gerardwil Registered Member

    Joined:
    Jan 17, 2004
    Posts:
    4,748
    Location:
    The Netherlands
    HIDS = Hostbased Intrusion Detection System (your computer)
    HIPS = Hostbased Intrusion Prevention System
    NIDS = Network Intrusion Detection System (network)

    See also Wikipedia etc. for much more info

    Gerard
     
  3. kareldjag

    kareldjag Registered Member

    Joined:
    Nov 13, 2004
    Posts:
    622
    Location:
    PARIS AND ITS SUBURBS
    hi,

    Both are system/desktop based protection, but HIPSs rely mostly on anomaly detection of system activity, and HIDSs rely mostly on anomaly detection of network activity.
    HIPS are recommended in Windows machines, and HIDS on Linux PC (OSSEC HIDS for instance is avalaibale for the two platforms).
    If you're not in a W/LAN, there is no need of an HIDS as any good firewall will log suspicious events.
    And in a few words, an HIPS tries to detect/prevent malwares from infecting the local host, and an HIDS tries to detect/prevent intruders/hackers (stealth port scan etc.) from gaining acces to the local host.

    Rgds
     
  4. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
  5. jiggity

    jiggity Registered Member

    Joined:
    Nov 5, 2010
    Posts:
    9
    Location:
    San Diego, CA
    Very good explanation! :thumb: :thumb: :thumb:
     
  6. Hugger

    Hugger Registered Member

    Joined:
    Oct 27, 2007
    Posts:
    1,003
    Location:
    Hackensack, USA
    And what would be considered good and relatively easy to use HIPS for a Windows 7 x64 pc?
    Thanks.
     
  7. Noob

    Noob Registered Member

    Joined:
    Nov 6, 2009
    Posts:
    6,468
    Online Armor since it has a good community and a whitelist that you can rely on, based on my experience OA Premium in default settings after a few reboots is extremely quiet.
    In fact in my PC i have all those auto trust, whitelist etc. deactivated and after a few days it could not be quieter :D
     
  8. pegr

    pegr Registered Member

    Joined:
    Apr 8, 2008
    Posts:
    2,279
    Location:
    UK
    Comodo Firewall with Defense+ is also a good choice. These days also very quiet due to extensive whitelisting.
     
Loading...
Thread Status:
Not open for further replies.