H12-711試験無料問題集（290題）「Huawei HCIA-Security V3.0 認定」

出題：1

Which of the following options does not belong to the log type of the Windows operating system?

A. Business log

B. System log

C. Security log

D. Application log

正解：A 解答を投票する

出題：2

Which of the following option does not belong to symmetric encryption algorithm?

A. 3DES

B. DES

C. RSA

D. AES

正解：C 解答を投票する

出題：3

In stateful inspection firewall, when opening state detection mechanism, three-way handshake's second packet (SYN + ACK) arrives the firewall. If there is still no corresponding session table on the firewall, then which of the following statement is correct?

A. packets must not pass through the firewall

B. If the firewall security policy allows packets through, then creating the session table

C. packets must pass through the firewall, and establishes a session table

D. If the firewall security policy allows packets through, then the packets can pass through the firewall

正解：A 解答を投票する

出題：4

Which of the following is the correct description of windows log event type? (Multiple Choice)

A. A warning event is a successful operation event of an application, driver, or service.

B. Error events usually refer to the loss of function and data. For example, if a service cannot be loaded as a system boot, an error event will be generated.

C. Failure audit event refers to a failed audit security login attempt, such as a failure when the user view accesses the network drive is logged as a failed audit event.

D. When the disk space is insufficient, it will be recorded as an "information event"

正解：B,C,D 解答を投票する

出題：5

Which of the following descriptions of the firewall fragment cache function are correct? (Multiple choice)

A. By default, the number of large fragment caches of an IPV4 packet is 32, and the number of large fragmentation buffers of an IPV6 packet is 255.

B. After the fragmented packet is directly forwarded, the firewall forwards the fragment according to the interzone security policy if it is not the fragmented packet of the first packet.

C. By default, the firewall caches fragmented packets.

D. For fragmented packets, NAT ALG does not support the processing of SIP fragmented packets.

正解：A,C,D 解答を投票する

出題：6

Which of the following are in the certification area of ISO27001? (Multiple choice)

A. Vulnerability management

B. Access control

C. Business continuity management

D. Personnel safety

正解：A,B,C,D 解答を投票する

出題：7

Which of the following is the core part of the P2DR model?

A. Protection

B. Policy Strategy

C. Detection

D. Response

正解：B 解答を投票する

出題：8

IPSec VPN technology does not support NAT traversal when encapsulating with ESP security protocol, because ESP encrypts the packet header.

A. True

B. False

正解：B 解答を投票する

出題：9

Which of the following guarantees "should detect and protect spam at critical network nodes and maintain upgrades and updates of the spam protection mechanism" in security 2.0?

A. Border protection

B. Centralized control

C. Malicious code prevention

D. Communication transmission

正解：C 解答を投票する

出題：10

Intrusion prevention system technical characteristics include (Multiple choice)

A. real-time blocking

B. online mode

C. self-learning and adaptive

D. straight road deployment

正解：A,B,C 解答を投票する

出題：11

Which of the following is not the scope of business of the National Internet Emergency Center?

A. Cooperate with other agencies to provide training services

B. Providing security evaluation services for government departments, enterprises and institutions

C. Emergency handling of security incidents

D. Early warning notification of security incidents

正解：A 解答を投票する

出題：12

Which of the following descriptions is wrong about the source of electronic evidence?

A. Movies and TV shows belong to electronic evidence related to network technology.

B. Fax data, mobile phone recording is an electronic evidence related to communication technology.

C. Database operation records, operating system logs are computer-related electronic evidence

D. Operating system, e-mail, chat records can be used as a source of electronic evidence

正解：A 解答を投票する

出題：13

Which of the following is wrong about the scanning of vulnerabilities?

A. The vulnerability was discovered beforehand and discovered afterwards.

B. Vulnerabilities are generally repairable

C. Vulnerabilities can be avoided

D. Vulnerabilities are security risks that can expose computers to hackers

正解：C 解答を投票する

出題：14

Security technology has different methods at different technical levels and areas. Which of the following devices can be used for network layer security protection? (Multiple choice)

A. Firewall

B. IPS/IDS device

C. Vulnerability scanning device

D. Anti-DDoS device

正解：A,B,D 解答を投票する

出題：15

On the surface, threats such as viruses, vulnerabilities, and Trojans are the cause of information security incidents, but at the root of it, information security incidents are also strongly related to people and information systems themselves.

A. True

B. False

正解：A 解答を投票する

H12-711試験無料問題集「Huawei HCIA-Security V3.0 認定」