信管网每日一练

导航

信息安全工程师每日一练试题(2022/1/13)

2022年01月14日来源:信管网 作者:cnitpm

信息安全工程师当天每日一练试题地址:www.cnitpm.com/exam/ExamDay.aspx?t1=6

往期信息安全工程师每日一练试题汇总:www.cnitpm.com/class/27/e6_1.html

信息安全工程师每日一练试题(2022/1/13)在线测试:www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2022/1/13

点击查看:更多信息安全工程师习题与指导

信息安全工程师每日一练试题内容(2022/1/13)

试题1

以下关于安全套接层协议(SSL)的叙述中,错误的是()
A、是一种应用层安全协议
B、为TCP/IP连接提供数据加密
C、为TCP/IP连接提供服务器认证
D、提供数据安全机制

试题解析与讨论:www.cnitpm.com/st/284953163.html
试题参考答案:A

试题2: 包过滤技术防火墙在过滤数据包时,一般不关心()
A.数据包的原地址
B.数据包的目的地址
C.数据包的协议类型
D.数据包的内容
试题解析与讨论:www.cnitpm.com/st/327384549.html
试题参考答案:D

试题3: 面向数据挖掘的隐私保护技术主要解高层应用中的隐私保护问题,致力于研究如何根据不同数据挖掘操作的特征来实现对隐私的保护,从数据挖的角度,不属于隐私保护技术的是(  )。
A.基于数据分析的隐私保护技术
B.基于微据失真的隐私保护技术
C.基于数据匿名化的隐私保护技术
D.基于数据加密的隐私保护技术
试题解析与讨论:www.cnitpm.com/st/3893114145.html
试题参考答案:A

试题4

Kerberos是一种常用的身份认证协议,它采用的加密算法是()
A、Elgamal
B、DES
C、MD5
D、RSA

试题解析与讨论:www.cnitpm.com/st/2847116804.html
试题参考答案:B

试题5

利用公开密钥算法进行数据加密时,采用的方法是()
A、发送方用公开密钥加密,接收方用公开密钥解密
B、发送方用私有密钥加密,接收方用私有密钥解密
C、发送方用公开密钥加密,接收方用私有密钥解密
D、发送方用私有密钥加密,接收方用公开密钥解密

试题解析与讨论:www.cnitpm.com/st/2847616861.html
试题参考答案:C

试题6: The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of (71 )and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
(71)
A.plaintext
B.ciphertext
C.data
D.hash
(72)
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
(73)
A.of
B.for
C.with
D.in
(74)
A.hash
B.stream
C.ciphertext
D.plaintext
(75)
A.collisions
B.image
C.preimage
D.solution
试题解析与讨论:www.cnitpm.com/st/4115223167.html
试题参考答案:A、D、C、B、A

试题7: 操作系统的安全审计是指对系统中有关安全的活动进行记录、检查和审核的过程,为了完成审计功能,审计系统需要包括(  )三大功能模块。
A.审计数据挖掘,审计事件记录及查询、审计事件分析及响应报警
B.审计事件特征提取、审计事件特征匹配、安全响应报警
C.审计事件收集及过滤、审计事件记录及查询,审计事件分析及响应报警系统
D.日志采集与挖掘、安全事件记录及查询、安全响应报警
试题解析与讨论:www.cnitpm.com/st/3896821058.html
试题参考答案:C

试题8

以下关于IPSec协议的叙述中,正确的是()
A、IPSec协议是解决IP协议安全问题的一种方案
B、IPSec协议不能提供完整性
C、IPSec协议不能提供机密性保护
D、IPSec协议不能提供认证功能

试题解析与讨论:www.cnitpm.com/st/2849818821.html
试题参考答案:A

试题9: 密码分析的目的是()
A.发现加密算法
B.发现密钥或者密文对应的明文
C.发现解密算法
D.发现攻击者
试题解析与讨论:www.cnitpm.com/st/3273915034.html
试题参考答案:B

试题10: 当防火墙在网络层实现信息过滤与控制时,主要针对TCP/IP协议中的数据包头制定规则匹配条件并实施过滤,该规则的匹配条件不包括(  )。
A.IP源地址
B.源端口
C.IP目的地址
D.协议
试题解析与讨论:www.cnitpm.com/st/3898620950.html
试题参考答案:B

温馨提示:因考试政策、内容不断变化与调整,信管网提供的以上信息仅供参考,如有异议,请考生以权威部门公布的内容为准!

分享至:
请使用浏览器的分享功能,把好文章分享给更多的人

信管网 - 信息系统项目管理专业网站

下载APP-在线学习

培训课程

0元畅享

考试题库

免费资料

APP下载