信息安全工程師當天每日一練試題地址：www.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：www.xiexiliangjiufa.com/class/27/e6_1.html

信息安全工程師每日一練試題（2020/10/18）在線測試：www.xiexiliangjiufa.com/exam/ExamDay.aspx?t1=6&day=2020/10/18

點擊查看：更多信息安全工程師習題與指導

信息安全工程師每日一練試題內(nèi)容（2020/10/18）

試題1： Which of the following is the MOST effective type of antivirus software? 
A、Scanners 
B、Active monitors 
C、Integrity checkers 
D、Vaccines 
試題解析與討論：www.xiexiliangjiufa.com/st/2963423445.html
試題參考答案：C

試題2：

關于《計算機信息系統(tǒng)安全保護條例》，以下錯誤的是：（）
A、計算機信息系統(tǒng)實行安全等級保護制度。
B、計算機信息系統(tǒng)使用單位應當建立健全安全管理制度。
C、計算機信息系統(tǒng)實行性能測試和安全測評制度。
D、公安部主管全國計算機信息系統(tǒng)安全保護工作（含安全監(jiān)督職權）。

試題解析與討論：www.xiexiliangjiufa.com/st/2734412467.html
試題參考答案：C

試題3： When segregation of duties concerns exist between IT support staff and end users, what would be a suitable compensating control? 
A、Restricting physical access to computing equipment 
B、Reviewing transaction and application logs 
C、Performing background checks prior to hiring IT staff 
D、Locking user sessions after a specified period of inactivity 
試題解析與討論：www.xiexiliangjiufa.com/st/2955015870.html
試題參考答案：B

試題4：

某種防火墻的缺點是沒有辦法從非常細微之處來分析數(shù)據(jù)包，但它的優(yōu)點是非?？?，這種防火墻是以下的哪一種？（）
A.電路級網(wǎng)關
B.應用級網(wǎng)關
C.會話層防火墻
D.包過濾防火墻

試題解析與討論：www.xiexiliangjiufa.com/st/2705614956.html
試題參考答案：D

試題5：

以下哪些不屬于脆弱性范疇？（）
A.黑客攻擊
B.操作系統(tǒng)漏洞
C.應用程序BUG
D.人員的不良操作習慣

試題解析與討論：www.xiexiliangjiufa.com/st/2590929496.html
試題參考答案：A

試題6： 以下密碼使用方法中正確的是（）。
A、將密碼記錄在日記本上以避免忘記    
B、任何情況下均不得使用臨時性密碼    
C、密碼中的字母不得重復    
D、不要使用全部由字母組成的密碼
試題解析與討論：www.xiexiliangjiufa.com/st/2267418787.html
試題參考答案：D

試題7：

某個客戶的網(wǎng)絡現(xiàn)在可以正常訪問Internet 互聯(lián)網(wǎng)，共有200臺終端PC但此客戶從ISP（互聯(lián)網(wǎng)絡服務提供商）里只獲得了16個公有的IPv4地址，最多也只有16臺PC可以訪問互聯(lián)網(wǎng)，要想讓全部200 臺終端PC訪問Internet互聯(lián)網(wǎng)最好采取什么方法或技術：（）
A．花更多的錢向ISP申請更多的IP地址
B．在網(wǎng)絡的出口路由器上做源NAT
C．在網(wǎng)絡的出口路由器上做目的NAT
D．在網(wǎng)絡的出口處增加一定數(shù)量的路由器

試題解析與討論：www.xiexiliangjiufa.com/st/2681423341.html
試題參考答案：B

試題8： The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of （71 ）and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
（71）
A.plaintext
B.ciphertext
C.data
D.hash
（72）
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
（73）
A.of
B.for
C.with
D.in
（74）
A.hash
B.stream
C.ciphertext
D.plaintext
（75）
A.collisons
B.image
C.preimage
D.solution
試題解析與討論：www.xiexiliangjiufa.com/st/4115223167.html
試題參考答案：A、D、C、B、C

試題9： 數(shù)字簽名比較的是摘要結果長度是否都是128位的()
A、是
B、否
試題解析與討論：www.xiexiliangjiufa.com/st/243452276.html
試題參考答案：B

試題10：

防火墻作為一種被廣泛使用的網(wǎng)絡安全防御技術，其自身有一些限制，它不能阻止（）
A、內(nèi)部威脅和病毒威脅
B、外部攻擊
C、外部攻擊、外部威脅和病毒威脅
D、外部攻擊和外部威脅

試題解析與討論：www.xiexiliangjiufa.com/st/2845123602.html
試題參考答案：A