信息安全工程师每日一练试题（2022/7/15）

2022年07月16日来源：信管网作者:cnitpm

信息安全工程师当天每日一练试题地址：www.cnitpm.com/exam/ExamDay.aspx?t1=6

往期信息安全工程师每日一练试题汇总：www.cnitpm.com/class/27/e6_1.html

信息安全工程师每日一练试题（2022/7/15）在线测试：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2022/7/15

点击查看：更多信息安全工程师习题与指导

信息安全工程师每日一练试题内容（2022/7/15）

试题1
防火墙的经典体系结构主要有三种，下图给出的是（）体系结构。

A.双重宿主主机
B.（被）屏蔽主机
C.（被）屏蔽子网
D.混合模式

查看答案
试题参考答案：C
试题解析与讨论：www.cnitpm.com/st/3273114558.html
试题2
《网络安全法》明确了国家落实网络安全工作的职能部门和职责，其中明确规定由（）负责统筹协调网络安全工作和相关监督管理工作。
A.中央网络安全与信息化小组
B.国务院
C.国家网信部门
D.国家公安部门
查看答案
试题参考答案：C
试题解析与讨论：www.cnitpm.com/st/389288676.html
试题3
BS7799标准是英国标准协会制定的信息安全管理体系标准，它包括两个部分：《信息安全管理实施指南》和《信息安全管理体系规范和应用指南》。依据该标准可以组织建立、实施与保持信息安全管理体系，但不能实现（）。
A、强化员工的信息安全意识,规范组织信息安全行为
B、对组织内关键信息资产的安全态势进行动态监测
C、促使管理层坚持贯彻信息安全保障体系
D、通过体系认证就表明体系符合标准,证明组织有能力保障重要信息
查看答案
试题参考答案：B
试题解析与讨论：www.cnitpm.com/st/4108410250.html
试题4
Trust is typically interpreted as a subjective belief in the reliability， honesty and security of an entity on which we depend （）our welfare .In online environments we depend on a wide spectrun of things , ranging from computer hardware,software and data to people and organizations. A security solution always assumes certain entities function according to specific policies.To trust is precisely to make this sort of assumptions , hence , a trusted entity is the same as an entity that is assumed to function according to policy . A consequence of this is that a trust component of a system must work correctly in order for the security of that system to hold, meaning that when a trusted（）fails , then the sytems and applications that depend on it can（）be considered secure.An often cited articulation of this principle is:＂ a trusted system or component is one that can break your security policy” ( which happens when the trust system fails ). The same applies to a trusted party such as a service provider ( SP for short )that is , it must operate according to the agreed or assumed policy in order to ensure the expected level of securty and quality of services . A paradoxical conclusion to be drawn from this analysis is that security assurance may decrease when increasing the number of trusted components and parties that a service infrastructure depends on . This is because the security of an infrastructure consisting of many.
Trusted components typically follows the principle of the weakest link , that is ,in many situations the the overall security can only be as strong as the least reliable or least secure of all the trusted components. We cannot avoid using trusted security components,but the fewer the better. This is important to understand when designing the identity management architectures,that is, fewer the trusted parties in an identity management model , stronger the security that can be achieved by it.
The transfer of the social constructs of identity and trust into digital and computational concepts helps in designing and implementing large scale online markets and communities,and also plays an important role in the converging mobile and Internet environments.Identity management (denoted Idm hereafter ) is about recognizing and verifying the correctness of identitied in online environment .Trust management becomes a component of （）whenever different parties rely on each other for identity provision and authentication . IdM and Trust management therefore depend on each other in complex ways because the correctness of the identity itself must be trusted for the quality and reliability of the corresponding entity to be trusted.IdM is also an essential concept when defining authorisation policies in personalised services.
Establishing trust always has a cost, so that having complex trust requirement typically leads to high overhead in establishing the required trust. To reduce costs there will be incentives for stakeholders to “cut corners”regarding trust requirements ,which could lead to inadequate security . The challenge is to design IdM systems with relatively simple trust requirements.Cryptographic mechanisms are often a core component of IdM solutions,for example,for entity and data authentication.With cryptography,it is often possible to propagate trust from where it initially exists to where it is needed .The establishment of initial（）usually takes place in the physical world,and the subsequent propagation of trust happens online,often in an automated manner.
（71）A.with
B. on
C. of
D. for
（72）A.entity
B.person
C.component
D.thing
（73）A. No longer
B. never
C. always
D.often
（74）A. SP
B. IdM
C.Internet
D.entity
（75）A.trust
B.cost
C.IdM
D. solution
查看答案
试题参考答案：D、C、A、B、A
试题解析与讨论：www.cnitpm.com/st/389944612.html
试题5
信息系统受到破坏后，会对社会秩序和公共利益造成特别严重损害，或者对国家安全造成严重损害，按照计算机信息系统安全等级保护相关要求，应定义为（）。
A.第一级
B.第二级
C.第三级
D.第四级
查看答案
试题参考答案：D
试题解析与讨论：www.cnitpm.com/st/502166773.html
试题6
计算机取证是将计算机调查和分析技术应用于对潜在的,有法律效力的证据的确定与提取.以下关于计算机取证的描述中,错误的是（）。
A.计算机取证包括保护目标计算机系统、确定收集和保存电子证据,必须在开机的状态下进行
B.计算机取证围绕电子证据进行,电子证据具有高科技性、无形性和易破坏性等特点
C.计算机取证包括对以磁介质编码信息方式存储的计算机证据的保护、确认、提取和归档
D.计算机取证是一门在犯罪进行过程中或之后收集证据的技术
查看答案
试题参考答案：A
试题解析与讨论：www.cnitpm.com/st/3894121956.html
试题7
网络物理隔离有利于强化网络安全的保障，增强涉密网络的安全性。以下关于网络物理隔离实现技术的表述，错误的是（）。
A．物理断开可以实现处于不同安全域的网络之间以间接方式相连接
B．内外网线路切换器通过交换盒的开关设置控制计算机的网络物理连接
C．单硬盘内外分区技术将单台物理PC虚拟成逻辑上的两台PC
D．网闸通过具有控制功能开关来连接或切断两个独立主机系统的数据交换
查看答案
试题参考答案：A
试题解析与讨论：www.cnitpm.com/st/5226516747.html
试题8
在下图给出的加密过程中Mi,i=1,2,…,n表示明文分组，Ci,i=1,2,…,n表示密文分组，IV表示初始序列，K表示密钥，E表示分组加密。该分组加密过程的工作模式是（）。

A.ECB
B.CTR
C.CFB
D.PCBC
查看答案
试题参考答案：D
试题解析与讨论：www.cnitpm.com/st/4114621173.html
试题9
SM4是一种分组密码算法，其分组长度和密钥长度分别为（）。
A.64位和128位
B.128位和128位
C.128位和256位
D.256位和256位
查看答案
试题参考答案：B
试题解析与讨论：www.cnitpm.com/st/3275126410.html
试题10
Diffie-Hellman密钥交换协议是一种共享秘钥的方案，该协议是基于求解( )的困难性。
A．大素数分解问题
B．离散对数问题
C．椭圆离散对数问题
D．背包问题
查看答案
试题参考答案：B
试题解析与讨论：www.cnitpm.com/st/522412431.html

温馨提示：因考试政策、内容不断变化与调整，信管网提供的以上信息仅供参考，如有异议，请考生以权威部门公布的内容为准！

分享至：