信息安全工程師當(dāng)天每日一練試題地址：m.xomuzic.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：m.xomuzic.com/class/27/e6_1.html

信息安全工程師每日一練試題（2022/3/12）在線測試：m.xomuzic.com/exam/ExamDay.aspx?t1=6&day=2022/3/12

點(diǎn)擊查看：更多信息安全工程師習(xí)題與指導(dǎo)

信息安全工程師每日一練試題內(nèi)容（2022/3/12）

試題1： （  ）是一種通過不斷對網(wǎng)絡(luò)服務(wù)系統(tǒng)進(jìn)行干擾,影響其正常的作業(yè)流程,使系統(tǒng)響應(yīng)減慢甚至癱瘓的攻擊方式。
A.暴力攻擊
B.拒絕服務(wù)攻擊
C.重放攻擊
D.欺騙攻擊
試題解析與討論：m.xomuzic.com/st/3894428360.html
試題參考答案：B

試題2： 對信息進(jìn)行均衡、全面的防護(hù)，提高整個系統(tǒng)“安全最低點(diǎn)”的安全性能，這種安全原則被稱為（  ）。
A.最小特權(quán)原則
B.木桶原則
C.等級化原則
D.最小泄露原則
試題解析與討論：m.xomuzic.com/st/3893514227.html
試題參考答案：B

試題3： 安全模型是一種對安全需求與安全策略的抽象概念模型，安全策略模型一般分為自主訪問控制模型和強(qiáng)制訪問控制模型。以下屬于自主訪問控制模型的是 （  ）。
A.BLP模型
B.基于角色的存取控制模型
C.BN模型
D.訪問控制矩陣模型
試題解析與討論：m.xomuzic.com/st/4109626557.html
試題參考答案：D

試題4：

安全電子交易協(xié)議SET是有VISA和MasterCard兩大信用卡組織聯(lián)合開發(fā)的電子商務(wù)安全協(xié)議。以下關(guān)于SET的敘述中，正確的是（）
A、SET是一種基于流密碼的協(xié)議
B、SET不需要可信的第三方認(rèn)證中心的參與
C、SET要實(shí)現(xiàn)的主要目標(biāo)包括保障付款安全，確定應(yīng)用的互通性和達(dá)到全球市場的可接受性
D、SET通過向電子商務(wù)各參與方發(fā)放驗(yàn)證碼來確認(rèn)各方的身份，保證網(wǎng)上支付的安全性

試題解析與討論：m.xomuzic.com/st/2850213651.html
試題參考答案：C

試題5： The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of （71 ）and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
（71）
A.plaintext
B.ciphertext
C.data
D.hash
（72）
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
（73）
A.of
B.for
C.with
D.in
（74）
A.hash
B.stream
C.ciphertext
D.plaintext
（75）
A.collisions
B.image
C.preimage
D.solution
試題解析與討論：m.xomuzic.com/st/4115223167.html
試題參考答案：A、D、C、B、A

試題6： 屬于對稱加密算法。
A.EIGantal
B.DES
C.MDS
D.RSA
試題解析與討論：m.xomuzic.com/st/3269024299.html
試題參考答案：B

試題7： DSS數(shù)字簽名標(biāo)準(zhǔn)的核心是數(shù)字簽名算法DSA，該簽名算法中雜湊函數(shù)采用的是（）。
A. SHA1
B. MD5
C. MD4
D. SHA2
試題解析與討論：m.xomuzic.com/st/3275324398.html
試題參考答案：A

試題8： 我國制定的關(guān)于無線局域網(wǎng)安全的強(qiáng)制標(biāo)準(zhǔn)是（）
A.IEEE 802.11
B. WPA
C. WAPI
D. WEP
試題解析與討論：m.xomuzic.com/st/327138354.html
試題參考答案：C

試題9：

利用公開密鑰算法進(jìn)行數(shù)據(jù)加密時，采用的方法是（）
A、發(fā)送方用公開密鑰加密，接收方用公開密鑰解密
B、發(fā)送方用私有密鑰加密，接收方用私有密鑰解密
C、發(fā)送方用公開密鑰加密，接收方用私有密鑰解密
D、發(fā)送方用私有密鑰加密，接收方用公開密鑰解密

試題解析與討論：m.xomuzic.com/st/2847616861.html
試題參考答案：C

試題10：

一個全局的安全框架必須包含的安全結(jié)構(gòu)因素是（）
A、審計(jì)、完整性、保密性、可用性
B、審計(jì)、完整性、身份認(rèn)證、保密性、可用性
C、審計(jì)、完整性、身份認(rèn)證、可用性
D、審計(jì)、完整性、身份認(rèn)證、保密性

試題解析與討論：m.xomuzic.com/st/28490785.html
試題參考答案：B