信息安全工程師當天每日一練試題地址：m.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：m.xiexiliangjiufa.com/class/27/e6_1.html

信息安全工程師每日一練試題（2021/6/16）在線測試：m.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6&day=2021/6/16

點擊查看：更多信息安全工程師習題與指導

信息安全工程師每日一練試題內容（2021/6/16）

試題1：

甲收到一份來自乙的電子訂單后，將訂單中的貨物送達到乙時，乙否認自己曾經發(fā)送過這份訂單，為了解除這種紛爭，采用的安全技術是（）
A、數字簽名技術
B、數字證書
C、消息認證碼
D、身份認證技術

試題解析與討論：m.xiexiliangjiufa.com/st/284833063.html
試題參考答案：A

試題2： ISO制定的安全體系結構描述了5種安全服務，以下不屬于這5種安全服務的是（）
A.鑒別服務
B.數據報過濾
C.訪問控制
D.數據完整性
試題解析與討論：m.xiexiliangjiufa.com/st/3270424021.html
試題參考答案：B

試題3：

WI-FI網絡安全接入是一種保護無線網絡安全的系統(tǒng)，WPA加密模式不包括（）
A、WPA和WPA2
B、WPA-PSK
C、WEP
D、WPA2-PSK

試題解析與討論：m.xiexiliangjiufa.com/st/284804709.html
試題參考答案：C

試題4：

    There are different ways to perform IP based DoS Attacks. The most common IP based DoS attack is that an attacker sends an extensive amount of connection establishment （1）(e.g. TCP SYN requests) to establish hanging connections with the controller or a DPS. Such a way, the attacker can consume the network resources which should be available for legitimate users. In other （2）, the attacker inserts a large amount of （3）packets to the data plane by spoofing all or part of the header fields with random values. These incoming packets will trigger table-misses and send lots of packet-in flow request messages to the network controller to saturate the controller resources. In some cases, an （4）who gains access to DPS can artificially generate lots of random packet-in flow request messages to saturate the control channel and the controller resources. Moreover, the lack of diversity among DPSs fuels fuels the fast propagation of such attacks.
    Legacy mobile backhaul devices are inherently protected against the propagation of attacks due to complex and vendor specific equipment. Moreover, legacy backhaul devices do not require frequent communication with core control devices in a manner similar to DPSs communicating with the centralized controller. These features minimize both the impact and propagation of DoS attacks. Moreover, the legacy backhaul devices are controlled as a joint effort of multiple network element. For instance, a single Long Term Evilution（LTE）eNodeB  is connected up to 32 MMEs. Therefore, DoS/DDoS attack on a single core element will not terminate the entire operation of a backhaul device（5）the net work.

（1）A.message  B、information  C、requests  D、data
（2）A.methods  B、cases       C、hands    D、sections
（3）A.bad      B、real        C、fake      D、new
（4）A.user     B、administrator  C、editor   D、attacker
（5）A.or       B、of          C、in        D、to
試題解析與討論：m.xiexiliangjiufa.com/st/32757467.html
試題參考答案：C、B、C、D、A

試題5： 以下關于數字證書的敘述中,錯誤的是（  ）。
A.證書通常攜帶CA的公開密鑰
B.證書攜帶持有者的簽名算法標識
C.證書的有效性可以通過驗證持有者的簽名驗證
D.證書通常由CA安全認證中心發(fā)放
試題解析與討論：m.xiexiliangjiufa.com/st/389547738.html
試題參考答案：A

試題6：

（1）is the science of hiding information. Whereas the goal of cryptography is to make data unreadable by a third party. the goal of steganography is to hide the data from a third party. In this article, I will discuss what steganography is, what purposes it serves, and will provide an example using available software.
There are a large number of steganographic （2）that most of us are familiar with (especially if you watch a lot of spy movies), ranging from invisible ink and microdots to secreting a hidden message in the second letter of each word of a large body of text and spread spectrum radio communication. With computers and networks, there are many other ways of hiding informations, such as:
Covert channels (c,g, Loki and some distributed denial-of-service tools use the Internet Control （3）Protocol, or ICMP, as the communication channel between the “bad guy”and a compromicyed system)
Hidden text within Web pages
Hiding files in “plain sight”(c,g. what better place to “hide”a file than with an important sounding name in the c:\winnt system32 directory)
Null ciphers(c,g, using the first letter of each word to form a hidden message in an otherwise innocuous text)
steganography today, however, is significantly more （4）than the example about suggest, allowing a user to hide large amounts of information within image and audio. These forms of steganography often are used in conjunction with cryptography so the information is double protected; first it is encrypted and then hidden so that an advertisement first. find the information ( an often difficult task in and of itself) and the decrypted it.
The simplest approach to hiding data within an image file is called （5）signature insertion. In this method, we can take the binary representation of the hidden data and the bit of each byte within the covert image. If we are using 24-bit color the amount and will be minimum and indiscriminate to the human eye.
（1）A、Cryptography
B、Geography
C、Stenography
D、Steganography
（2）A、methods
B、software
C、tools
D、services
（3）A、Member
B、Management
C、Message
D、Mail
（4）A、powerful
B、sophistication
C、advanced
D、easy
（5）A、least
B、most
C、much
D、less

試題解析與討論：m.xiexiliangjiufa.com/st/2851420507.html
試題參考答案：D、A、C、B、A

試題7：

安全專家在對某網站進行安全部署時，調整了Apache 的運行權限，從root 權限降低為nobody 用戶，以下操作的主要目的是：（）
A．為了提高Apache 軟件運行效率
B．為了提高Apache 軟件的可靠性
C．為了避免攻擊者通過Apache 獲得root 權限
D．為了減少Apache 上存在的漏洞

試題解析與討論：m.xiexiliangjiufa.com/st/257024920.html
試題參考答案：C

試題8： 無線傳感器網絡容易受到各種惡意攻擊，以下關于其防御手段說法錯誤的是（）。
A.采用干擾區(qū)內節(jié)點切換頻率的方式抵御干擾
B.通過向獨立多路徑發(fā)送驗證數據來發(fā)現異常節(jié)點
C.利用中心節(jié)點監(jiān)視網絡中其它所有節(jié)點來發(fā)現惡意節(jié)點
D.利用安全并具有彈性的時間同步協(xié)議對抗外部攻擊和被俘獲節(jié)點的影響
試題解析與討論：m.xiexiliangjiufa.com/st/3274326177.html
試題參考答案：C

試題9：

來自終端的電磁泄露風險，因為它們:（）
A.導致噪音污染
B.? 破壞處理程序
C.? 產生危險水平的電流
D.? 可以被捕獲并還原

試題解析與討論：m.xiexiliangjiufa.com/st/2608920248.html
試題參考答案：D

試題10：

下面哪種方法在數據中心滅火最有效并且是環(huán)保的？（）
A.哈龍氣體
B.濕管
C.干管
D.二氧化碳氣

試題解析與討論：m.xiexiliangjiufa.com/st/2608516073.html
試題參考答案：A