信息安全工程師當(dāng)天每日一練試題地址：www.jazzmuze.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：www.jazzmuze.com/class/27/e6_1.html

信息安全工程師每日一練試題（2020/10/18）在線測(cè)試：www.jazzmuze.com/exam/ExamDay.aspx?t1=6&day=2020/10/18

點(diǎn)擊查看：更多信息安全工程師習(xí)題與指導(dǎo)

信息安全工程師每日一練試題內(nèi)容（2020/10/18）

試題1： Which of the following is the MOST effective type of antivirus software? 
A、Scanners 
B、Active monitors 
C、Integrity checkers 
D、Vaccines 
試題解析與討論：www.jazzmuze.com/st/2963423445.html
試題參考答案：C

試題2：

關(guān)于《計(jì)算機(jī)信息系統(tǒng)安全保護(hù)條例》，以下錯(cuò)誤的是：（）
A、計(jì)算機(jī)信息系統(tǒng)實(shí)行安全等級(jí)保護(hù)制度。
B、計(jì)算機(jī)信息系統(tǒng)使用單位應(yīng)當(dāng)建立健全安全管理制度。
C、計(jì)算機(jī)信息系統(tǒng)實(shí)行性能測(cè)試和安全測(cè)評(píng)制度。
D、公安部主管全國(guó)計(jì)算機(jī)信息系統(tǒng)安全保護(hù)工作（含安全監(jiān)督職權(quán)）。

試題解析與討論：www.jazzmuze.com/st/2734412467.html
試題參考答案：C

試題3： When segregation of duties concerns exist between IT support staff and end users, what would be a suitable compensating control? 
A、Restricting physical access to computing equipment 
B、Reviewing transaction and application logs 
C、Performing background checks prior to hiring IT staff 
D、Locking user sessions after a specified period of inactivity 
試題解析與討論：www.jazzmuze.com/st/2955015870.html
試題參考答案：B

試題4：

某種防火墻的缺點(diǎn)是沒(méi)有辦法從非常細(xì)微之處來(lái)分析數(shù)據(jù)包，但它的優(yōu)點(diǎn)是非?？?，這種防火墻是以下的哪一種？（）
A.電路級(jí)網(wǎng)關(guān)
B.應(yīng)用級(jí)網(wǎng)關(guān)
C.會(huì)話層防火墻
D.包過(guò)濾防火墻

試題解析與討論：www.jazzmuze.com/st/2705614956.html
試題參考答案：D

試題5：

以下哪些不屬于脆弱性范疇？（）
A.黑客攻擊
B.操作系統(tǒng)漏洞
C.應(yīng)用程序BUG
D.人員的不良操作習(xí)慣

試題解析與討論：www.jazzmuze.com/st/2590929496.html
試題參考答案：A

試題6： 以下密碼使用方法中正確的是（）。
A、將密碼記錄在日記本上以避免忘記    
B、任何情況下均不得使用臨時(shí)性密碼    
C、密碼中的字母不得重復(fù)    
D、不要使用全部由字母組成的密碼
試題解析與討論：www.jazzmuze.com/st/2267418787.html
試題參考答案：D

試題7：

某個(gè)客戶的網(wǎng)絡(luò)現(xiàn)在可以正常訪問(wèn)Internet 互聯(lián)網(wǎng)，共有200臺(tái)終端PC但此客戶從ISP（互聯(lián)網(wǎng)絡(luò)服務(wù)提供商）里只獲得了16個(gè)公有的IPv4地址，最多也只有16臺(tái)PC可以訪問(wèn)互聯(lián)網(wǎng)，要想讓全部200 臺(tái)終端PC訪問(wèn)Internet互聯(lián)網(wǎng)最好采取什么方法或技術(shù)：（）
A．花更多的錢(qián)向ISP申請(qǐng)更多的IP地址
B．在網(wǎng)絡(luò)的出口路由器上做源NAT
C．在網(wǎng)絡(luò)的出口路由器上做目的NAT
D．在網(wǎng)絡(luò)的出口處增加一定數(shù)量的路由器

試題解析與討論：www.jazzmuze.com/st/2681423341.html
試題參考答案：B

試題8： The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of （71 ）and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
（71）
A.plaintext
B.ciphertext
C.data
D.hash
（72）
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
（73）
A.of
B.for
C.with
D.in
（74）
A.hash
B.stream
C.ciphertext
D.plaintext
（75）
A.collisons
B.image
C.preimage
D.solution
試題解析與討論：www.jazzmuze.com/st/4115223167.html
試題參考答案：A、D、C、B、C

試題9： 數(shù)字簽名比較的是摘要結(jié)果長(zhǎng)度是否都是128位的()
A、是
B、否
試題解析與討論：www.jazzmuze.com/st/243452276.html
試題參考答案：B

試題10：

防火墻作為一種被廣泛使用的網(wǎng)絡(luò)安全防御技術(shù)，其自身有一些限制，它不能阻止（）
A、內(nèi)部威脅和病毒威脅
B、外部攻擊
C、外部攻擊、外部威脅和病毒威脅
D、外部攻擊和外部威脅

試題解析與討論：www.jazzmuze.com/st/2845123602.html
試題參考答案：A