亚州综合图片,中文日本在线

當(dāng)前位置：信管網(wǎng) >> 信息安全工程師 >> 每日一練 >> 文章內(nèi)容

信息安全工程師每日一練試題（2022/7/15）

來源：信管網(wǎng) 2022年07月16日【所有評(píng)論】

信息安全工程師當(dāng)天每日一練試題地址：m.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：m.xiexiliangjiufa.com/class/27/e6_1.html

信息安全工程師每日一練試題（2022/7/15）在線測(cè)試：m.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6&day=2022/7/15

點(diǎn)擊查看：更多信息安全工程師習(xí)題與指導(dǎo)

信息安全工程師每日一練試題內(nèi)容（2022/7/15）

試題1
防火墻的經(jīng)典體系結(jié)構(gòu)主要有三種，下圖給出的是（）體系結(jié)構(gòu)。

A.雙重宿主主機(jī)
B.（被）屏蔽主機(jī)
C.（被）屏蔽子網(wǎng)
D.混合模式

查看答案
試題參考答案：C
試題解析與討論：m.xiexiliangjiufa.com/st/3273114558.html
試題2
《網(wǎng)絡(luò)安全法》明確了國(guó)家落實(shí)網(wǎng)絡(luò)安全工作的職能部門和職責(zé)，其中明確規(guī)定由（）負(fù)責(zé)統(tǒng)籌協(xié)調(diào)網(wǎng)絡(luò)安全工作和相關(guān)監(jiān)督管理工作。
A.中央網(wǎng)絡(luò)安全與信息化小組
B.國(guó)務(wù)院
C.國(guó)家網(wǎng)信部門
D.國(guó)家公安部門
查看答案
試題參考答案：C
試題解析與討論：m.xiexiliangjiufa.com/st/389288676.html
試題3
BS7799標(biāo)準(zhǔn)是英國(guó)標(biāo)準(zhǔn)協(xié)會(huì)制定的信息安全管理體系標(biāo)準(zhǔn)，它包括兩個(gè)部分：《信息安全管理實(shí)施指南》和《信息安全管理體系規(guī)范和應(yīng)用指南》。依據(jù)該標(biāo)準(zhǔn)可以組織建立、實(shí)施與保持信息安全管理體系，但不能實(shí)現(xiàn)（）。
A、強(qiáng)化員工的信息安全意識(shí),規(guī)范組織信息安全行為
B、對(duì)組織內(nèi)關(guān)鍵信息資產(chǎn)的安全態(tài)勢(shì)進(jìn)行動(dòng)態(tài)監(jiān)測(cè)
C、促使管理層堅(jiān)持貫徹信息安全保障體系
D、通過體系認(rèn)證就表明體系符合標(biāo)準(zhǔn),證明組織有能力保障重要信息
查看答案
試題參考答案：B
試題解析與討論：m.xiexiliangjiufa.com/st/4108410250.html
試題4
Trust is typically interpreted as a subjective belief in the reliability， honesty and security of an entity on which we depend （）our welfare .In online environments we depend on a wide spectrun of things , ranging from computer hardware,software and data to people and organizations. A security solution always assumes certain entities function according to specific policies.To trust is precisely to make this sort of assumptions , hence , a trusted entity is the same as an entity that is assumed to function according to policy . A consequence of this is that a trust component of a system must work correctly in order for the security of that system to hold, meaning that when a trusted（）fails , then the sytems and applications that depend on it can（）be considered secure.An often cited articulation of this principle is:＂ a trusted system or component is one that can break your security policy” ( which happens when the trust system fails ). The same applies to a trusted party such as a service provider ( SP for short )that is , it must operate according to the agreed or assumed policy in order to ensure the expected level of securty and quality of services . A paradoxical conclusion to be drawn from this analysis is that security assurance may decrease when increasing the number of trusted components and parties that a service infrastructure depends on . This is because the security of an infrastructure consisting of many.
Trusted components typically follows the principle of the weakest link , that is ,in many situations the the overall security can only be as strong as the least reliable or least secure of all the trusted components. We cannot avoid using trusted security components,but the fewer the better. This is important to understand when designing the identity management architectures,that is, fewer the trusted parties in an identity management model , stronger the security that can be achieved by it.
The transfer of the social constructs of identity and trust into digital and computational concepts helps in designing and implementing large scale online markets and communities,and also plays an important role in the converging mobile and Internet environments.Identity management (denoted Idm hereafter ) is about recognizing and verifying the correctness of identitied in online environment .Trust management becomes a component of （）whenever different parties rely on each other for identity provision and authentication . IdM and Trust management therefore depend on each other in complex ways because the correctness of the identity itself must be trusted for the quality and reliability of the corresponding entity to be trusted.IdM is also an essential concept when defining authorisation policies in personalised services.
Establishing trust always has a cost, so that having complex trust requirement typically leads to high overhead in establishing the required trust. To reduce costs there will be incentives for stakeholders to “cut corners”regarding trust requirements ,which could lead to inadequate security . The challenge is to design IdM systems with relatively simple trust requirements.Cryptographic mechanisms are often a core component of IdM solutions,for example,for entity and data authentication.With cryptography,it is often possible to propagate trust from where it initially exists to where it is needed .The establishment of initial（）usually takes place in the physical world,and the subsequent propagation of trust happens online,often in an automated manner.
（71）A.with
B. on
C. of
D. for
（72）A.entity
B.person
C.component
D.thing
（73）A. No longer
B. never
C. always
D.often
（74）A. SP
B. IdM
C.Internet
D.entity
（75）A.trust
B.cost
C.IdM
D. solution
查看答案
試題參考答案：D、C、A、B、A
試題解析與討論：m.xiexiliangjiufa.com/st/389944612.html
試題5
信息系統(tǒng)受到破壞后，會(huì)對(duì)社會(huì)秩序和公共利益造成特別嚴(yán)重?fù)p害，或者對(duì)國(guó)家安全造成嚴(yán)重?fù)p害，按照計(jì)算機(jī)信息系統(tǒng)安全等級(jí)保護(hù)相關(guān)要求，應(yīng)定義為（）。
A.第一級(jí)
B.第二級(jí)
C.第三級(jí)
D.第四級(jí)
查看答案
試題參考答案：D
試題解析與討論：m.xiexiliangjiufa.com/st/502166773.html
試題6
計(jì)算機(jī)取證是將計(jì)算機(jī)調(diào)查和分析技術(shù)應(yīng)用于對(duì)潛在的,有法律效力的證據(jù)的確定與提取.以下關(guān)于計(jì)算機(jī)取證的描述中,錯(cuò)誤的是（）。
A.計(jì)算機(jī)取證包括保護(hù)目標(biāo)計(jì)算機(jī)系統(tǒng)、確定收集和保存電子證據(jù),必須在開機(jī)的狀態(tài)下進(jìn)行
B.計(jì)算機(jī)取證圍繞電子證據(jù)進(jìn)行,電子證據(jù)具有高科技性、無形性和易破壞性等特點(diǎn)
C.計(jì)算機(jī)取證包括對(duì)以磁介質(zhì)編碼信息方式存儲(chǔ)的計(jì)算機(jī)證據(jù)的保護(hù)、確認(rèn)、提取和歸檔
D.計(jì)算機(jī)取證是一門在犯罪進(jìn)行過程中或之后收集證據(jù)的技術(shù)
查看答案
試題參考答案：A
試題解析與討論：m.xiexiliangjiufa.com/st/3894121956.html
試題7
網(wǎng)絡(luò)物理隔離有利于強(qiáng)化網(wǎng)絡(luò)安全的保障，增強(qiáng)涉密網(wǎng)絡(luò)的安全性。以下關(guān)于網(wǎng)絡(luò)物理隔離實(shí)現(xiàn)技術(shù)的表述，錯(cuò)誤的是（）。
A．物理斷開可以實(shí)現(xiàn)處于不同安全域的網(wǎng)絡(luò)之間以間接方式相連接
B．內(nèi)外網(wǎng)線路切換器通過交換盒的開關(guān)設(shè)置控制計(jì)算機(jī)的網(wǎng)絡(luò)物理連接
C．單硬盤內(nèi)外分區(qū)技術(shù)將單臺(tái)物理PC虛擬成邏輯上的兩臺(tái)PC
D．網(wǎng)閘通過具有控制功能開關(guān)來連接或切斷兩個(gè)獨(dú)立主機(jī)系統(tǒng)的數(shù)據(jù)交換
查看答案
試題參考答案：A
試題解析與討論：m.xiexiliangjiufa.com/st/5226516747.html
試題8
在下圖給出的加密過程中Mi,i=1,2,…,n表示明文分組，Ci,i=1,2,…,n表示密文分組，IV表示初始序列，K表示密鑰，E表示分組加密。該分組加密過程的工作模式是（）。

A.ECB
B.CTR
C.CFB
D.PCBC
查看答案
試題參考答案：D
試題解析與討論：m.xiexiliangjiufa.com/st/4114621173.html
試題9
SM4是一種分組密碼算法，其分組長(zhǎng)度和密鑰長(zhǎng)度分別為（）。
A.64位和128位
B.128位和128位
C.128位和256位
D.256位和256位
查看答案
試題參考答案：B
試題解析與討論：m.xiexiliangjiufa.com/st/3275126410.html
試題10
Diffie-Hellman密鑰交換協(xié)議是一種共享秘鑰的方案，該協(xié)議是基于求解( )的困難性。
A．大素?cái)?shù)分解問題
B．離散對(duì)數(shù)問題
C．橢圓離散對(duì)數(shù)問題
D．背包問題
查看答案
試題參考答案：B
試題解析與討論：m.xiexiliangjiufa.com/st/522412431.html

掃碼關(guān)注公眾號(hào)

溫馨提示：因考試政策、內(nèi)容不斷變化與調(diào)整，信管網(wǎng)網(wǎng)站提供的以上信息僅供參考，如有異議，請(qǐng)以權(quán)威部門公布的內(nèi)容為準(zhǔn)！

信管網(wǎng)致力于為廣大信管從業(yè)人員、愛好者、大學(xué)生提供專業(yè)、高質(zhì)量的課程和服務(wù)，解決其考試證書、技能提升和就業(yè)的需求。

信管網(wǎng)軟考課程由信管網(wǎng)依托10年專業(yè)軟考教研傾力打造，官方教材參編作者和資深講師坐鎮(zhèn)，通過深研歷年考試出題規(guī)律與考試大綱，深挖核心知識(shí)與高頻考點(diǎn)，為學(xué)員考試保駕護(hù)航。面授、直播＆錄播，多種班型靈活學(xué)習(xí)，滿足不同學(xué)員考證需求，降低課程學(xué)習(xí)難度，使學(xué)習(xí)效果事半功倍。

上一篇：項(xiàng)目生命周期和組織結(jié)構(gòu)試題：關(guān)于項(xiàng)目生

下一篇：信息安全工程師案例分析每日一練試題（2