伊人av综合网,久久三级网站

當前位置：信管網(wǎng) >> 信息安全工程師 >> 每日一練 >> 文章內(nèi)容

信息安全工程師每日一練試題（2025/6/18）

來源：信管網(wǎng) 2025年06月19日【所有評論】

信息安全工程師當天每日一練試題地址：www.njjt123.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：www.njjt123.com/class/27/e6_1.html

信息安全工程師每日一練試題（2025/6/18）在線測試：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18

點擊查看：更多信息安全工程師習題與指導

信息安全工程師每日一練試題內(nèi)容（2025/6/18）

試題1
在交換機上配置安全訪問控制時，哪一項措施屬于第一級安全控制，用于在連接建立前過濾非法用戶？
A．設(shè)置SNMP訪問的團體字符串
B．配置ACL以過濾登錄用戶
C．啟用SSH服務以加密遠程會話
D．更改Console端口的默認登錄密碼
查看答案
試題參考答案：B
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題2
在UNIX/Linux操作系統(tǒng)中，口令信息保存在passwd和shadow文件中，這兩個文件所在的目錄是（）
A．/bin
B．/lib
C．/etc
D．/home
查看答案
試題參考答案：C
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題3
基于統(tǒng)計的異常檢測方法中，典型的主體特征不包括（）
A．系統(tǒng)的登錄與注銷時間
B．資源被占用的時間以及處理機
C．內(nèi)存和外設(shè)的使用情況
D．異常行為出現(xiàn)的頻率
查看答案
試題參考答案：D
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題4
（）能有效防止重放攻擊。
A.簽名機制
B.時間戳機制
C.加密機制
D.壓縮機制
查看答案
試題參考答案：B
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題5

Kerberos是一種常用的身份認證協(xié)議，它采用的加密算法是（）
A、Elgamal
B、DES
C、MD5
D、RSA
查看答案
試題參考答案：B
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題6
（）是發(fā)生入侵后，提供緊急響應服務，例如關(guān)閉網(wǎng)絡服務、中斷網(wǎng)絡連接、啟動備份系統(tǒng)等
A．數(shù)據(jù)采集模塊
B．入侵分析引擎模塊
C．應急處理模塊
D．管理配置模塊
查看答案
試題參考答案：C
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題7
為了防止景點損壞網(wǎng)絡設(shè)備，有效的措施不包括（）
A．人員服裝采用不易產(chǎn)生靜電的衣料，工作鞋選用高阻值材料制作
B．控制機房溫、濕度，使其保持在不易產(chǎn)生靜電的范圍內(nèi)
C．機房中使用的各種工作臺、柜等，應選擇產(chǎn)生靜電小的材料
D．在進行網(wǎng)絡設(shè)備操作時，應戴防靜電手套
查看答案
試題參考答案：D
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題8
Web應用防火墻的HTTP過濾的常見功能不包括（）
A．HTTP協(xié)議頭各個字段的長度限制
B．后綴名過濾
C．Web服務器返回內(nèi)容過濾
D．IP地址白名單/黑名單過濾
查看答案
試題參考答案：D
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題9
The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of （71 ）and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’ type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
（71）
A.plaintext
B.ciphertext
C.data
D.hash
（72）
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
（73）
A.of
B.for
C.with
D.in
（74）
A.hash
B.stream
C.ciphertext
D.plaintext
（75）
A.collisions
B.image
C.preimage
D.solution
查看答案
試題參考答案：A、D、C、B、A
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18
試題10
IOS平臺通過什么機制來防止應用攻擊？
A．數(shù)據(jù)保護API
B．數(shù)據(jù)的加密與保護機制
C．地址空間布局隨機化
D．代碼簽名
查看答案
試題參考答案：D
試題解析與討論：www.njjt123.com/exam/ExamDay.aspx?t1=6&day=2025/6/18

信管網(wǎng)訂閱號

信管網(wǎng)視頻號

信管網(wǎng)抖音號

溫馨提示：因考試政策、內(nèi)容不斷變化與調(diào)整，信管網(wǎng)網(wǎng)站提供的以上信息僅供參考，如有異議，請以權(quán)威部門公布的內(nèi)容為準！

信管網(wǎng)致力于為廣大信管從業(yè)人員、愛好者、大學生提供專業(yè)、高質(zhì)量的課程和服務，解決其考試證書、技能提升和就業(yè)的需求。

信管網(wǎng)軟考課程由信管網(wǎng)依托10年專業(yè)軟考教研傾力打造，教材和資料參編作者和資深講師坐鎮(zhèn)，通過深研歷年考試出題規(guī)律與考試大綱，深挖核心知識與高頻考點，為學員考試保駕護航。面授、直播＆錄播，多種班型靈活學習，滿足不同學員考證需求，降低課程學習難度，使學習效果事半功倍。