試題1

信息通過網(wǎng)絡(luò)進行傳輸?shù)倪^程中，存在著被篡改的風(fēng)險，為了解決這一安全問題，通常采用的安全防護技術(shù)是（）
A、加密技術(shù)
B、匿名技術(shù)
C、消息認證技術(shù)
D、數(shù)據(jù)備份技術(shù)

查看答案

試題2

Perhaps the most obvious difference between private-key and public-key encryption is that the former assumes complete secrecy of all cry to graphic keys, whereas the latter requires secrecy for only the private key.Although this may seem like a minor distinction ,the ramifications are huge: in the private-key setting the communicating parties must somehow be able to share the (71) key without allowing any third party to learn it, whereas in the public-key setting the (72) key can be sent from one party to the other over a public channel without compromising security.For parties shouting across a room or, more realistically , communicating over a public network like a phone line or then ternet, public-key encryption is the only option.
Another important distinction is that private-key encryption sch emesuse the (73) key for both encryption and decryption, whereas public key encryption schemes use (74) keys for each operation.That is public-key encryption is inherently as ymmetri C．This asymmetry in the public-key setting means that the roles of sender and receiver are not interchangeable as they are in the private-key setting; a single key-pair allows communication in one direction only.(Bidirectional communication can be achieved in a number of ways; the point is that a single invocation of a public-key encryption scheme forces ad is tinction between one user who acts as a receiver and other users who act as senders.)。In addition, a single instance of a (75) encryption scheme enables multiple senders to communicate privately with a single receiver,in contrast to the private-key case where a secret key shared between two parties enables private communication only between those two parties.
(1) A．main
B．same
C．public
D．secret
(2) A．stream
B．different
C．public
D．secret
(3) A．different
B．same
C．public
D．private
(4) A．different
B．same
C．public
D．private
(5) A．private-key
B．public-key
C．stream
D．Hash

查看答案

試題3

查看答案

試題4

There are different ways to perform IP based DoS Attacks. The most common IP based DoS attack is that an attacker sends an extensive amount of connection establishment （1）(e.g. TCP SYN requests) to establish hanging connections with the controller or a DPS. Such a way, the attacker can consume the network resources which should be available for legitimate users. In other （2）, the attacker inserts a large amount of （3）packets to the data plane by spoofing all or part of the header fields with random values. These incoming packets will trigger table-misses and send lots of packet-in flow request messages to the network controller to saturate the controller resources. In some cases, an （4）who gains access to DPS can artificially generate lots of random packet-in flow request messages to saturate the control channel and the controller resources. Moreover, the lack of diversity among DPSs fuels fuels the fast propagation of such attacks.
Legacy mobile backhaul devices are inherently protected against the propagation of attacks due to complex and vendor specific equipment. Moreover, legacy backhaul devices do not require frequent communication with core control devices in a manner similar to DPSs communicating with the centralized controller. These features minimize both the impact and propagation of DoS attacks. Moreover, the legacy backhaul devices are controlled as a joint effort of multiple network element. For instance, a single Long Term Evilution（LTE）eNodeB  is connected up to 32 MMEs. Therefore, DoS/DDoS attack on a single core element will not terminate the entire operation of a backhaul device（5）the net work.

查看答案

試題5

查看答案

試題6

下列報告中，不屬于信息安全風(fēng)險評估識別階段的是（）
A、資產(chǎn)價值分析報告
B、風(fēng)險評估報告
C、威脅分析報告
D、已有安全威脅分析報告

查看答案

試題7

查看答案

試題8

查看答案

試題9

查看答案

試題10

查看答案