問題1
The trigger authentication method for firewall access user authentication does not include which of the following?
The trigger authentication method for firewall access user authentication does not include which of the following?
正確答案: C
問題2
Which of the following statements are correct about the PKI system structure?
Which of the following statements are correct about the PKI system structure?
正確答案: A,B,C,D
說明:(僅 NewDumps 成員可見)
問題3
Drag the phases of the cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution. 1. Inhibition stage, 2. recovery phase, 3. Detection stage, 4. eradication phase.
Drag the phases of the cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution. 1. Inhibition stage, 2. recovery phase, 3. Detection stage, 4. eradication phase.
正確答案:
3142
問題4
What is correct in the following description of Security Alliance in IPSec?
There are two ways to set up an IPSec SA
What is correct in the following description of Security Alliance in IPSec?
There are two ways to set up an IPSec SA
正確答案: A,B,C
問題5
We should choose the encryption algorithm according to our own use characteristics. When we need to encrypt a large amount of data, it is recommended to use the ____ encryption algorithm to improve the encryption and decryption speed.
We should choose the encryption algorithm according to our own use characteristics. When we need to encrypt a large amount of data, it is recommended to use the ____ encryption algorithm to improve the encryption and decryption speed.
正確答案:
symmetry
問題6
Which of the following descriptions of server authentication is correct?
Which of the following descriptions of server authentication is correct?
正確答案: D
問題7
Which of the following statements is incorrect about Portal authentication?
Which of the following statements is incorrect about Portal authentication?
正確答案: A
說明:(僅 NewDumps 成員可見)
問題8
Huawei Firewall only supports the inter-domain persistent connection function for TCP packets.
Huawei Firewall only supports the inter-domain persistent connection function for TCP packets.
正確答案: A
問題9
Digital envelope technology means that the sender uses the receiver's public key to encrypt the data, and then sends the ciphertext to the receiver
Digital envelope technology means that the sender uses the receiver's public key to encrypt the data, and then sends the ciphertext to the receiver
正確答案: A
問題10
Which of the following descriptions of single sign-on is correct?
Which of the following descriptions of single sign-on is correct?
正確答案: A
問題11
Please classify the following security defenses into the correct classification.

Please classify the following security defenses into the correct classification.

正確答案:


問題12
The IPS detects and analyzes all packets passing through a device and determines whether to permit or block the packets in real time based on the comprehensive detection mechanism. Sort the following steps into the correct order based on the basic implementation mechanism of the IPS.

The IPS detects and analyzes all packets passing through a device and determines whether to permit or block the packets in real time based on the comprehensive detection mechanism. Sort the following steps into the correct order based on the basic implementation mechanism of the IPS.

正確答案:

Explanation:
* Protocol identification and analysis
* Application data reassembly
* Signature matching
* Attack response
The correct IPS processing order starts with protocol identification and analysis . Before an IPS can judge whether traffic is malicious, it must first determine what protocol is being used and analyze the packet structure according to the expected protocol behavior. This helps the device understand whether the traffic is HTTP, FTP, SMTP, DNS, or another protocol and prepares it for deeper inspection.
After that, the IPS performs application data reassembly . Many attacks are not visible in a single packet, so the IPS must reconstruct fragmented or segmented traffic into complete application data. This allows the device to inspect the real payload content rather than isolated packet pieces.
Once the data is reassembled, the IPS performs signature matching . At this stage, the traffic content and behavior are compared with known attack signatures, protocol anomalies, and detection rules to determine whether the traffic matches a malicious pattern such as injection, buffer overflow, or directory traversal.
Finally, the IPS performs the attack response . Based on the detection result, it may permit, block, reset, alarm, or log the traffic. Therefore, the correct order is D # A # B # C .