信息安全工程師當(dāng)天每日一練試題地址：m.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：m.xiexiliangjiufa.com/class/27/e6_1.html

信息安全工程師每日一練試題（2021/12/10）在線測試：m.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6&day=2021/12/10

點(diǎn)擊查看：更多信息安全工程師習(xí)題與指導(dǎo)

信息安全工程師每日一練試題內(nèi)容（2021/12/10）

試題1：

在訪問因特網(wǎng)時(shí)，為了防止Web頁面中惡意代碼對自己計(jì)算機(jī)的損害，可以采取的防范措施是（）
A、將要訪問的Web站點(diǎn)按其可信度分配到瀏覽器的不同安全區(qū)域
B、在瀏覽器中安裝數(shù)字證書
C、利用IP安全協(xié)議訪問Web站點(diǎn)
D、利用SSL訪問Web站點(diǎn)

試題解析與討論：m.xiexiliangjiufa.com/st/2846515273.html
試題參考答案：A

試題2： 按照密碼系統(tǒng)對明文的處理方法,密碼系統(tǒng)可以分為（  ）。
A.對稱密碼系統(tǒng)和公鑰密碼系統(tǒng)
B.對稱密碼系統(tǒng)和非對稱密碼系統(tǒng)
C.數(shù)據(jù)加密系統(tǒng)和數(shù)字簽名系統(tǒng)
D.分組密碼系統(tǒng)和序列密碼系統(tǒng)
試題解析與討論：m.xiexiliangjiufa.com/st/3893815370.html
試題參考答案：D

試題3： 我國制定的關(guān)于無線局域網(wǎng)安全的強(qiáng)制標(biāo)準(zhǔn)是（）
A.IEEE 802.11
B. WPA
C. WAPI
D. WEP
試題解析與討論：m.xiexiliangjiufa.com/st/327138354.html
試題參考答案：C

試題4： The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of （71 ）and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
（71）
A.plaintext
B.ciphertext
C.data
D.hash
（72）
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
（73）
A.of
B.for
C.with
D.in
（74）
A.hash
B.stream
C.ciphertext
D.plaintext
（75）
A.collisions
B.image
C.preimage
D.solution
試題解析與討論：m.xiexiliangjiufa.com/st/4115223167.html
試題參考答案：A、D、C、B、A

試題5： 研究密碼破譯的科學(xué)稱為密碼分析學(xué)。密碼分析學(xué)中，根據(jù)密碼分析者可利用的數(shù)據(jù)資源，可將攻擊密碼的類型分為四種，其中適于攻擊公開密鑰密碼體制，特別是攻擊其數(shù)字簽名的是 （  ）。
A、僅知密文攻擊
B、已知明文攻擊
C、選擇密文攻擊
D、選擇明文攻擊
試題解析與討論：m.xiexiliangjiufa.com/st/410878655.html
試題參考答案：C

試題6：

入侵檢測系統(tǒng)放置在防火墻內(nèi)部所帶來的好處是（）
A、減少對防火墻的攻擊
B、降低入侵檢測
C、增加對低層次攻擊的檢測
D、增加檢測能力和檢測范圍

試題解析與討論：m.xiexiliangjiufa.com/st/2849616173.html
試題參考答案：B

試題7： 有線等效保密協(xié)議WEP采用RC4流密碼技術(shù)實(shí)現(xiàn)保密性，標(biāo)準(zhǔn)的64位標(biāo)準(zhǔn)流WEP用的密鑰和初始向量長度分別是（）
A.32位和32位
B.48位和16位
C.56位和8位
D.40位和24位試題解析與討論：m.xiexiliangjiufa.com/st/3272321085.html
試題參考答案：D

試題8： 特洛伊木馬攻擊的威脅類型屬于（  ）。
A.旁路控制威脅
B.網(wǎng)絡(luò)欺騙
C.植入威脅
D.授權(quán)侵犯威脅
試題解析與討論：m.xiexiliangjiufa.com/st/3896122725.html
試題參考答案：C

試題9： 屬于第二層的VPN隧道協(xié)議是（）。
A.IPSec
B.PPTP
C.GRE
D.IPv4
試題解析與討論：m.xiexiliangjiufa.com/st/3274424726.html
試題參考答案：B

試題10： PKI是一種標(biāo)準(zhǔn)的公鑰密碼密鑰管理平臺。在PKI中，認(rèn)證中心CA是整個(gè)PKI體系中各方都承認(rèn)的一個(gè)值得信賴的、公正的第三方機(jī)構(gòu)。CA的功能不包括（  ）。
A.證書的頒發(fā)
B.證書的審批
C.證書的加密
D.證書的備份
試題解析與討論：m.xiexiliangjiufa.com/st/4111223436.html
試題參考答案：C