信息安全工程師當(dāng)天每日一練試題地址：www.xomuzic.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：www.xomuzic.com/class/27/e6_1.html

信息安全工程師每日一練試題（2021/2/10）在線測試：www.xomuzic.com/exam/ExamDay.aspx?t1=6&day=2021/2/10

點擊查看：更多信息安全工程師習(xí)題與指導(dǎo)

信息安全工程師每日一練試題內(nèi)容（2021/2/10）

試題1： 電子郵件系統(tǒng)的郵件協(xié)議有發(fā)送協(xié)議SMTP和接收協(xié)議P0P3/IMAP4。SMTP發(fā)送協(xié)議中，發(fā)送身份標(biāo)識的指令是（  ）。
A. SEND
B. HELP
C. HELO
D. SAML
試題解析與討論：www.xomuzic.com/st/4110916654.html
試題參考答案：C

試題2：

下列哪一項能夠提高網(wǎng)絡(luò)的可用性？（）
A.數(shù)據(jù)冗余
B.鏈路冗余
C.軟件冗余
D.電源冗余

試題解析與討論：www.xomuzic.com/st/260678648.html
試題參考答案：B

試題3：

以下哪些是信息資產(chǎn)無需明確的（）
A.所有者
B.管理者
C.廠商
D.使用者

試題解析與討論：www.xomuzic.com/st/260764137.html
試題參考答案：C

試題4：

以下不屬于網(wǎng)絡(luò)安全控制技術(shù)的是（）
A、防火墻技術(shù)
B、訪問控制
C、入侵檢測技術(shù)
D、差錯控制

試題解析與討論：www.xomuzic.com/st/2849122070.html
試題參考答案：D

試題5： 以下惡意代碼中，屬于宏病毒的是（）
A. Macro.Melissa
B. Trojian.huigezi.a
C. Worm.Blaster.g
D. Backdoor.Agobot.frt
試題解析與討論：www.xomuzic.com/st/327144885.html
試題參考答案：A

試題6： 《計算機信息系統(tǒng)安全保護等級劃分準(zhǔn)則》（GB17859——1999）中規(guī)定了計算機系統(tǒng)安全保護能力的五個等級，其中要求對所有主體和客體進行自主和強制訪問控制的是（）
A.用戶自主保護級
B.系統(tǒng)審計保護級
C.安全標(biāo)記保護級
D.結(jié)構(gòu)化保護級試題解析與討論：www.xomuzic.com/st/326885401.html
試題參考答案：D

試題7：

入侵檢測系統(tǒng)放置在防火墻內(nèi)部所帶來的好處是（）
A、減少對防火墻的攻擊
B、降低入侵檢測
C、增加對低層次攻擊的檢測
D、增加檢測能力和檢測范圍

試題解析與討論：www.xomuzic.com/st/2849616173.html
試題參考答案：B

試題8：

信息安全政策聲明：”每個人必須在進入每一個控制門時，都必須讀取自己的證件”,防范的是哪一種攻擊方式?（）
A.尾隨Piggybacking
B.肩窺Shoulder surfing
C.Dumpster diving
D.冒充 Impersonation

試題解析與討論：www.xomuzic.com/st/2609323042.html
試題參考答案：A

試題9： Trust is typically interpreted as a subjective belief in the reliability， honesty and  security  of an entity on which we depend （ ）our welfare .In online environments we depend on a wide spectrun of things , ranging from computer hardware,software and data to people and organizations. A security solution always assumes certain entities function according to specific policies.To trust is precisely to make this sort of assumptions , hence , a trusted entity is the same as an entity that is assumed to function according to  policy . A consequence of this is that a trust component of a system must work correctly in order   for the security of that system to hold, meaning that when a trusted（  ）fails , then the sytems and applications that depend on it can（  ）be considered secure.An often cited articulation of this principle is:＂ a trusted system or component is one that can break your security policy” ( which happens when the trust system fails ). The same applies to a trusted party such as a service provider ( SP for short )that is , it must operate according to the agreed or assumed   policy in order to ensure the expected level of securty and quality of services . A paradoxical   conclusion to be drawn from this analysis is that security assurance may decrease when increasing the number of trusted components and parties that a service infrastructure depends on . This is because the security of an infrastructure consisting of many.
Trusted components typically follows the principle of the weakest link , that is ,in many situations the the overall security can only be as strong as the least reliable or least secure of all the trusted components. We cannot avoid using trusted security components,but the fewer the better. This is important to understand when designing the  identity management architectures,that is, fewer the trusted parties in an identity management model , stronger the security that can be achieved by it.
The transfer of the social constructs of identity and trust into digital and computational concepts helps in designing and implementing large scale online markets and communities,and also plays an important role in the converging mobile and Internet environments.Identity management (denoted Idm hereafter ) is about recognizing and verifying the correctness of identitied in online environment .Trust management becomes a component of （  ）whenever different parties rely on each other for identity provision and authentication . IdM and Trust management therefore depend on each other in complex ways because the correctness of the identity itself must be trusted for the quality and reliability of the corresponding entity to be trusted.IdM is also an essential concept when defining  authorisation policies in personalised services.
Establishing trust always has a cost, so that having  complex trust requirement typically leads to high overhead in establishing the required trust. To reduce costs there will be incentives for stakeholders to “cut corners”regarding trust requirements ,which could lead to inadequate security . The challenge is to design IdM systems with relatively simple trust requirements.Cryptographic mechanisms are often a core component of IdM solutions,for example,for entity and data authentication.With cryptography,it is often possible to propagate trust from where it initially exists to where it is needed .The establishment of initial（  ）usually takes place in the physical world,and the subsequent propagation of trust happens online,often in an automated manner.
（71）A.with
B. on
C. of
D. for
（72）A.entity
B.person
C.component
D.thing
（73）A. No longer
B. never
C. always
D.often
（74）A. SP
B. IdM
C.Internet
D.entity
（75）A.trust
B.cost
C.IdM
D. solution
試題解析與討論：www.xomuzic.com/st/389944612.html
試題參考答案：D、C、A、B、A

試題10：

以下哪些不是網(wǎng)絡(luò)類資產(chǎn)：（）
A.網(wǎng)絡(luò)設(shè)備
B.基礎(chǔ)服務(wù)平臺
C.網(wǎng)絡(luò)安全設(shè)備
D.主干線路

試題解析與討論：www.xomuzic.com/st/260739154.html
試題參考答案：B