What can a HIPS do that a NIPS cannot? (Choose two.)

Host Intrusion Prevention Systems (HIPS) and Network Intrusion Prevention Systems (NIPS) serve different roles in network security. Here are two things that a HIPS can do that a NIPS cannot:

Detect malware delivered to the host via an encrypted channel:

• HIPS is positioned on the host itself and can inspect the activities and behavior of processes running on the host, regardless of whether the communication is encrypted or not. It can detect malware that might be delivered to the host via an encrypted channel, such as through encrypted connections or downloads.

Protect a mobile host while connected to non-secured networks:

• HIPS provides security protection directly on the host, making it suitable for protecting mobile hosts (e.g., laptops, smartphones) even when they are connected to non-secured or untrusted networks. It can monitor and defend against threats at the endpoint, which is valuable for devices that are frequently used outside of secure network environments.

NIPS, on the other hand, is primarily focused on network traffic inspection and monitoring for threats crossing the network links, so it may not have the same level of visibility or control over the host as a HIPS does. It excels at blocking malware as it traverses the network, inspecting traffic on the network wire or in transit.