What are two challenges faced when deploying host-level IPS? (Choose Two)
A.
The deployment must support multiple operating systems.
B.
It does not provide protection for offsite computers.
C.
It is unable to provide a complete network picture of an attack.
D.
It is unable to determine the outcome of every attack that it detects.
E.
It is unable to detect fragmentation attacks.
Explanation:
Advantages of HIPS: The success or failure of an attack can be readily determined. A
network IPS sends an alarm upon the presence of intrusive activity but cannot always
ascertain the success or failure of such an attack. HIPS does not have to worry about
fragmentation attacks or variable Time to Live (TTL) attacks because the host stack takes
care of these issues. If the network traffic stream is encrypted, HIPS has access to the traffic
in unencrypted form.
Limitations of HIPS: There are two major drawbacks to HIPS:
+ HIPS does not provide a complete network picture: Because HIPS examines information
only at the local host level, HIPS has difficulty constructing an accurate network picture or
coordinating the events happening across the entire network. + HIPS has a requirement to
support multiple operating systems: HIPS needs to run on every system in the network. This
requires verifying support for all the different operating systems used in your network.
Source: http://www.ciscopress.com/articles/article.asp?p=1336425&seqNum=3
so A and C i think?!
4
0
Looking at the article provided I would also say A, and C.
4
0
Definitely A & C!!
0
0
I think A & C.
0
0
It answer that with A & C in different Quoestion :
Q :What are the challenges faced when deploying host based IPS?
A. Must support multi operating systems
B. Does not have full network picture
https://www.briefmenow.org/cisco/what-are-the-challenges-faced-when-deploying-host-based-ips/
0
0