男人的网站在线观看,久久精品66

當前位置：信管網 >> 信息安全工程師 >> 每日一練 >> 文章內容

信息安全工程師每日一練試題（2026/3/20）

來源：信管網 2026年03月21日【所有評論】

信息安全工程師當天每日一練試題地址：www.scxcsports.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：www.scxcsports.com/class/27/e6_1.html

信息安全工程師每日一練試題（2026/3/20）在線測試：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20

點擊查看：更多信息安全工程師習題與指導

信息安全工程師每日一練試題內容（2026/3/20）

試題1
AES算法必須滿足的要求不正確的是（）
A．密碼必須可以在世界范圍內免費使用
B．密碼必須是沒有密級的
C．密碼系統(tǒng)支持至少64比特長的分組
D．密碼支持的密鑰長度至少為128、192和256比特
查看答案
試題參考答案：C
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題2
關于公鑰證書描述不正確的是（）
A．公鑰證書將實體和一個公鑰綁定
B．公鑰證書可以證實公鑰的真實性
C．公鑰證書由CA頒發(fā)
D．公鑰證書不包含實體的身份信息
查看答案
試題參考答案：D
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題3
近些年國密算法和標準體系受到越來越多的關注，基于國密算法的應用也得到了快速發(fā)展。以下國密算法中，屬于分組密碼算法的是( )。
A．SM2
B．SM3
C．SM4
D．SM9
查看答案
試題參考答案：C
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題4
精于算計的攻擊者在退出系統(tǒng)之前會在系統(tǒng)中制造一些后門，以方便自己下次入侵，攻擊者設計后門時通常會考慮的方法不包括（）
A．放寬文件許可權
B．修改系統(tǒng)的配置
C．建立個人信道
D．安裝嗅探器
查看答案
試題參考答案：C
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題5
The modern study of symmetric-key ciphers relates mainly to the study of block ciphers and stream ciphers and to their applications. A block cipher is, in a sense, a modern embodiment of Alberti's polyalphabetic cipher: block ciphers take as input a block of （71 ）and a key, and output a block of ciphertext of the same size. Since messages are almost always longer than a single block, some method of knitting together successive blocks is required. Several have been developed, some with better security in one aspect or another than others. They are the mode of operations and must be carefully considered when using a block cipher in a cryptosystem.
The Data Encryption Standard (DES) and the Advanced Encryption Standard (AES) are( 72 )designs which have been designated cryptography standards by the US government (though DES's designation was finally withdrawn after the AES was adopted). Despite its deprecation as an official standard, DES (especially its still-approved and much more secure triple-DES variant) remains quite popular; it is used across a wide range of applications, from ATM encryption to e-mail privacy and secure remote access. Many other block ciphers have been designed and released, with considerable variation in quality. Many have been thoroughly broken. See Category: Block ciphers.
Stream ciphers, in contrast to the ‘block’ type, create an arbitrarily long stream of key material, which is combined ( 73 )the plaintext bit-by-bit or character-by-character, somewhat like the one-time pad. In a stream cipher, the output( 74 )is created based on an internal state which changes as the cipher operates. That state change is controlled by the key, and, in some stream ciphers, by the plaintext stream as well. RC4 is an example of a well-known, and widely used, stream cipher; see Category: Stream ciphers.
Cryptographic hash functions (often called message digest functions) do not necessarily use keys, but are a related and important class of cryptographic algorithms. They take input data (often an entire message), and output a short fixed length hash, and do so as a one-way function. For good ones, ( 75 ) (two plaintexts which produce the same hash) are extremely difficult to find.
Message authentication codes (MACs) are much like cryptographic hash functions, except that a secret key is used to authenticate the hash value on receipt. These block an attack against plain hash functions.
（71）
A.plaintext
B.ciphertext
C.data
D.hash
（72）
A.stream cipher
B.hash function
C.Message authentication code
D.Block cipher
（73）
A.of
B.for
C.with
D.in
（74）
A.hash
B.stream
C.ciphertext
D.plaintext
（75）
A.collisions
B.image
C.preimage
D.solution
查看答案
試題參考答案：A、D、C、B、A
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題6
強制訪問控制是指系統(tǒng)根據主體和客體的安全屬性，以強制方式控制主體對客體的訪問。以下描述正確的是（）
A．強制訪問控制的訪問機制更靈活
B．強制訪問控制對用戶的誤操作無效
C．強制訪問控制能適應高安全等級需求，常用于軍事領域
D．強制訪問控制的實施依賴于用戶的安全意識和技能
查看答案
試題參考答案：C
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題7
宏病毒和腳本惡意代碼通常使用（）技術來實現變形。
A．指令替換
B．重編譯
C．指令擴展
D．偽指令
查看答案
試題參考答案：B
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題8
PDRR模型是Protection、Detection、Recovery、Response。其中響應(Response)的主要內容不包括（）
A．防火墻技術
B．應急策略
C．應急機制
D．入侵過程分析
查看答案
試題參考答案：A
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題9
在云計算環(huán)境下，數據泄露的一個可能原因是（）
A．云服務提供商內部人員誤操作
B．云服務API接口不安全
C．數據的實際存儲位置可能在境外
D．虛擬機鏡像存在安全漏洞
查看答案
試題參考答案：C
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20
試題10
數字水印技術通過在多媒體數據中嵌入隱蔽的水印標記,可以有效實現對數字多媒體數據的版權保護等功能。以下不屬于數字水印在數字版權保護中必須滿足的基本應用需求的是（）。
A.保密性
B.隱蔽性
C.可見性
D.完整性
查看答案
試題參考答案：C
試題解析與討論：www.scxcsports.com/exam/ExamDay.aspx?t1=6&day=2026/3/20