信息安全工程師當天每日一練試題地址：www.conferencecallsmadeeasy.com/exam/ExamDay.aspx?t1=6

往期信息安全工程師每日一練試題匯總：www.conferencecallsmadeeasy.com/class/27/e6_1.html

信息安全工程師每日一練試題（2020/6/15）在線測試：www.conferencecallsmadeeasy.com/exam/ExamDay.aspx?t1=6&day=2020/6/15

點擊查看：更多信息安全工程師習題與指導

信息安全工程師每日一練試題內容（2020/6/15）

試題1： When selecting audit procedures, an IS auditor should use professional judgment to ensure that: 
A、sufficient evidence will be collected. 
B、all significant deficiencies identified will be corrected within a reasonable period. 
C、all material weaknesses will be identified. 
D、audit costs will be kept at a minimum level. 
試題解析與討論：www.conferencecallsmadeeasy.com/st/293947824.html
試題參考答案：A

試題2： An organization has an integrated development environment (IDE) on which the program libraries reside on the server, but modification/development and testing are done from PC workstations. Which of the following would be a strength of an IDE? 
A、Controls the proliferation of multiple versions of programs 
B、Expands the programming resources and aids available 
C、Increases program and processing integrity 
D、Prevents valid changes from being overwritten by other changes 
試題解析與討論：www.conferencecallsmadeeasy.com/st/2925926338.html
試題參考答案：B

試題3：

安全隔離網閘與防火墻相比，需要采取更強的安全隔離技術，請指出下列哪一項技術不會在安全隔離網閘中使用（）
A、專用的安全通信協議
B、專用的硬件通信通道
C、應用層的數據交換
D、支持數據包路由

試題解析與討論：www.conferencecallsmadeeasy.com/st/2726129265.html
試題參考答案：D

試題4： As updates to an online order entry system are processed, the updates are recorded on a transaction tape and a hard copy transaction log. At the end of the day, the order entry files are backed up on tape. During the backup procedure, a drive malfunctions and the order entry files are lost. Which of the following is necessary to restore these files? 
A、The previous day's backup file and the current transaction tape 
B、The previous day's transaction file and the current transaction tape 
C、The current transaction tape and the current hard copy transaction log 
D、The current hard copy transaction log and the previous day's transaction file 
試題解析與討論：www.conferencecallsmadeeasy.com/st/2931327706.html
試題參考答案：A

試題5：

以下哪一項不是流氓軟件的特征？（）  
A、通常通過誘騙或和其他軟件捆綁在用戶不知情的情況下安裝
B、通常添加驅動保護使用戶難以卸載
C、通常會啟動無用的程序浪費計算機的資源
D、通常會顯示下流的言論

試題解析與討論：www.conferencecallsmadeeasy.com/st/264381444.html
試題參考答案：D

試題6：

為了確保電子郵件中郵件內容的安全，應該采用以下哪種方式比較恰當()
A、 電子郵件發(fā)送時要加密，并注意不要錯發(fā)
B、 電子郵件不需要加密碼
C、 只要向接收者正常發(fā)送就可以了
D、 使用移動終端發(fā)送郵件

試題解析與討論：www.conferencecallsmadeeasy.com/st/2668723522.html
試題參考答案：A

試題7： 以下惡意代碼中，屬于宏病毒的是（）
A. Macro.Melissa
B. Trojian.huigezi.a
C. Worm.Blaster.g
D. Backdoor.Agobot.frt
試題解析與討論：www.conferencecallsmadeeasy.com/st/327144885.html
試題參考答案：A

試題8：

對于信息安全管理，風險評估的方法比起基線的方法，主要的優(yōu)勢在于它確保（）
A.信息資產被過度保護
B.不考慮資產的價值，基本水平的保護都會被實施
C.對信息資產實施適當水平的保護
D.對所有信息資產保護都投入相同的資源

試題解析與討論：www.conferencecallsmadeeasy.com/st/259855710.html
試題參考答案：C

試題9：

以下哪一項都不是PKI/CA 要解決的問題:（）
A、可用性、身份鑒別
B、可用性、授權與訪問控制
C、完整性、授權與訪問控制
D、完整性、身份鑒別

試題解析與討論：www.conferencecallsmadeeasy.com/st/2693913281.html
試題參考答案：B

試題10： When performing a computer forensic investigation, in regard to the evidence gathered, an IS auditor should be MOST concerned with: 
A、analysis. 
B、evaluation. 
C、preservation. 
D、disclosure. 
試題解析與討論：www.conferencecallsmadeeasy.com/st/293651103.html
試題參考答案：C