Which type of system is likely to employ file integrity checking?

File integrity checking is a critical function primarily associated with systems that monitor changes to files and directories on a host. A Host-based Intrusion Prevention System (HIPS) is designed to enhance security on an individual machine by actively monitoring and analyzing the operating system processes and file systems for any suspicious activities. This includes checking the integrity of files to detect unauthorized modifications, which could indicate malicious activity, such as file corruption or tampering by an attacker.

In contrast, other systems like Network-based Intrusion Detection Systems typically focus on analyzing network traffic rather than file systems. They monitor packets traversing the network to identify suspicious patterns or potential attacks, which may not involve direct checks of file integrity on host systems. Since the primary function of a Host-Based Intrusion Prevention System is to monitor and protect the integrity of the operating system and its files, it is specifically suited for employing file integrity checking as part of its security measures.