信息安全工程师每日一练试题（2025/12/6）

2025年12月07日来源：信管网作者:cnitpm

信息安全工程师当天每日一练试题地址：www.cnitpm.com/exam/ExamDay.aspx?t1=6

往期信息安全工程师每日一练试题汇总：www.cnitpm.com/class/27/e6_1.html

信息安全工程师每日一练试题（2025/12/6）在线测试：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6

点击查看：更多信息安全工程师习题与指导

信息安全工程师每日一练试题内容（2025/12/6）

试题1
被动传播的恶意代码不包括（）
A．特洛伊木马
B．间谍软件
C．逻辑炸弹
D．网络蠕虫
查看答案
试题参考答案：D
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题2
（）保护IP包的保密性，（）保护IP包的完整性和提供数据源认证。
A．IP AH，IP ESP
B．IP AH，密钥交换协议
C．IP ESP，密钥交换协议
D．IP ESP，IP AH
查看答案
试题参考答案：D
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题3
Trust is typically interpreted as a subjective belief in the reliability， honesty and security of an entity on which we depend （）our welfare .In online environments we depend on a wide spectrun of things , ranging from computer hardware,software and data to people and organizations. A security solution always assumes certain entities function according to specific policies.To trust is precisely to make this sort of assumptions , hence , a trusted entity is the same as an entity that is assumed to function according to policy . A consequence of this is that a trust component of a system must work correctly in order for the security of that system to hold, meaning that when a trusted（）fails , then the sytems and applications that depend on it can（）be considered secure.An often cited articulation of this principle is:＂ a trusted system or component is one that can break your security policy” ( which happens when the trust system fails ). The same applies to a trusted party such as a service provider ( SP for short )that is , it must operate according to the agreed or assumed policy in order to ensure the expected level of securty and quality of services . A paradoxical conclusion to be drawn from this analysis is that security assurance may decrease when increasing the number of trusted components and parties that a service infrastructure depends on . This is because the security of an infrastructure consisting of many.
Trusted components typically follows the principle of the weakest link , that is ,in many situations the the overall security can only be as strong as the least reliable or least secure of all the trusted components. We cannot avoid using trusted security components,but the fewer the better. This is important to understand when designing the identity management architectures,that is, fewer the trusted parties in an identity management model , stronger the security that can be achieved by it.
The transfer of the social constructs of identity and trust into digital and computational concepts helps in designing and implementing large scale online markets and communities,and also plays an important role in the converging mobile and Internet environments.Identity management (denoted Idm hereafter ) is about recognizing and verifying the correctness of identitied in online environment .Trust management becomes a component of （）whenever different parties rely on each other for identity provision and authentication . IdM and Trust management therefore depend on each other in complex ways because the correctness of the identity itself must be trusted for the quality and reliability of the corresponding entity to be trusted.IdM is also an essential concept when defining authorisation policies in personalised services.
Establishing trust always has a cost, so that having complex trust requirement typically leads to high overhead in establishing the required trust. To reduce costs there will be incentives for stakeholders to “cut corners”regarding trust requirements ,which could lead to inadequate security . The challenge is to design IdM systems with relatively simple trust requirements.Cryptographic mechanisms are often a core component of IdM solutions,for example,for entity and data authentication.With cryptography,it is often possible to propagate trust from where it initially exists to where it is needed .The establishment of initial（）usually takes place in the physical world,and the subsequent propagation of trust happens online,often in an automated manner.
（71）A.with
B. on
C. of
D. for
（72）A.entity
B.person
C.component
D.thing
（73）A. No longer
B. never
C. always
D.often
（74）A. SP
B. IdM
C.Internet
D.entity
（75）A.trust
B.cost
C.IdM
D. solution
查看答案
试题参考答案：D、C、A、B、A
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题4

以下有关信息安全管理员职责的叙述，不正确的是( )
A、信息安全管理员应该对网络的总体安全布局进行规划
B、信息安全管理员应该对信息系统安全事件进行处理
C、信息安全管理员应该负责为用户编写安全应用程序
D、信息安全管理员应该对安全设备进行优化配置
查看答案
试题参考答案：C
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题5
在信息系统安全设计中，保证“信息及时且可靠地被访问和使用”是为了达到保障信息系统( )的目标。
A.可用性
B.保密性
C.可控性
D.完整性
查看答案
试题参考答案：A
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题6
计算机病毒通常附加在正常软件或文档中，一旦触发执行，就会潜入受害用户的计算机。以下计算机病毒以Word文档为隐蔽载体是( )。
A．熊猫病毒
B．NIMDA病毒
C．Melissa
D．求职信病毒
查看答案
试题参考答案：C
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题7
网络物理隔离系统是指通过物理隔离技术，在不同的网络安全区域之间建立一个能够实现物理隔离、信息交换和可信控制的系统，以满足不同安全区域的信息或数据交换。以下有关网络物理隔离系统的叙述中，错误的是( )。
A．使用网闸的两个独立主机不存在通信物理连接，主机对网闸只有“读”操作
B．双硬盘隔离系统在使用时必须不断重新启动切换，且不易于统一管理
C．单向传输部件可以构成可信的单向信道，该信道无任何反馈信息
D．单点隔离系统主要保护单独的计算机，防止外部直接攻击和干扰
查看答案
试题参考答案：A
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题8
source-wildcard表示发送数据包的主机IP地址的通配符掩码，其中（）代表“忽略”，（）代表“需要匹配”，any代表任何来源的IP包。
A．T,F
B．F,T
C．1,0
D．0,1
查看答案
试题参考答案：C
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题9
密码工作是党和国家的一项特殊重要工作，直接关系国家政治安全、经济安全、国防安全和信息安全。密码法的通过对全面提升密码工作法治化水平起到了关键性作用。密码法规定国家对密码实行分类管理，密码分类中不包含( )
A.核心密码
B.普通密码
C.商用密码
D.国产密码

查看答案
试题参考答案：D
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6
试题10
在DES加密算法中,子密钥的长度和加密分组的长度分别是（）。
A.56位和64位
B.48位和64位
C.48位和56位
D.64位和64位
查看答案
试题参考答案：B
试题解析与讨论：www.cnitpm.com/exam/ExamDay.aspx?t1=6&day=2025/12/6

温馨提示：因考试政策、内容不断变化与调整，信管网提供的以上信息仅供参考，如有异议，请考生以权威部门公布的内容为准！

分享至：

信管网 - 信息系统项目管理专业网站

下载APP-在线学习

立即下载学习