Refresh H12-711_V3.0 Testing Software For HCIA-Security V3.0 Certification

NEW QUESTION 1

About the rootCACertificate, which of the following descriptions is incorrect?

• A. Issuer isCA
• B. The certificate subject name isCA
• C. public key information isCA's public key
• D. signature isCAgenerated by public key encryption

Answer: D

NEW QUESTION 2

In the process of digital signature, which of the following is mainly carried outHASHAlgorithms thereby verifying the integrity of data transmissions?

• A. User data
• B. Symmetric key
• C. Receiver's public key
• D. Receiver's private key

Answer: A

NEW QUESTION 3

Which of the following options areIATF(Information Assurance Technology Framework) core elements of the model? (multiple choice)

• A. surroundings
• B. people
• C. Technology
• D. operate

Answer: BCD

NEW QUESTION 4

Which of the following is an encryption technique used in digital envelopes?

• A. Symmetric encryption algorithm
• B. Asymmetric encryption algorithm
• C. hash algorithm
• D. stream-add algorithm

Answer: B

NEW QUESTION 5

The steps of the security assessment method do not include which of the following?

• A. Manual audit
• B. Penetration testing
• C. Questionnaire
• D. data analysis

Answer: D

NEW QUESTION 6

Digital signature is to generate digital fingerprint by using hash algorithm, so as to ensure the integrity of data transmission

• A. True
• B. False

Answer: A

NEW QUESTION 7

Which of the following does not belong to the block encryption algorithm in the symmetric encryption algorithm?

• A. RC5
• B. RC4
• C. RC6
• D. RC2

Answer: B

NEW QUESTION 8

For network security incidents that occur, remote emergency response is generally adopted first. If the problem cannot be solved for the customer through remote access, after confirmation by the customer, go to the local emergency response process

• A. True
• B. False

Answer: A

NEW QUESTION 9

Which of the following options is not a communication electronic evidence?

• A. Telephone recording
• B. Chat history
• C. Email
• D. System log

Answer: A

NEW QUESTION 10

Firewall usagehrp standby config enableAfter the standby device configuration function is enabled by the command, all information that can be backed up can be configured directly on the standby device, and the configuration on the standby device can be synchronized to the active device.

• A. True
• B. False

Answer: A

NEW QUESTION 11

Drag the phases of the cybersecurity emergency response on the left into the box on the right, and arrange them from top to bottom in the order of execution.[fill in the blank]*

• A. Yes
• B. Not Mastered

Answer: A

NEW QUESTION 12

Which of the following is not a type of digital certificate?

• A. Local certificate
• B. Terminal certificate
• C. Self-signed certificate
• D. Device local certificate

Answer: D

NEW QUESTION 13

about Internet users andVPNIn the description of access user authentication, which of the following is false?

• A. Internet users andVPNAccess to user shared data, user attribute check (user status, account expiration time, etc.)VPNAccess takes effect
• B. The process of online users using local authentication or server authentication is basically the same.Both users are authenticated through the authentication domain, and the user triggering method is also the same.
• C. VPNAfter users access the network, they can access the network resources of the enterprise headquarters, and the firewall can control the network resources that can be accessed based on the user name
• D. VPNAfter the access user is authenticated, it will go online in the user online list at the same time

Answer: D

NEW QUESTION 14

want to implement security policy"Anti-virus function", must beLicenseactivation.

• A. True
• B. False

Answer: A

NEW QUESTION 15

Which of the following statements about OSPF is correct?

• A. Distance Vector Protocol
• B. Good scalability
• C. No loops
• D. Support authentication

Answer: BCD

NEW QUESTION 16

About firewall fragmentationWhich of the following options is correct? (multiple choice)

• A. By default, the firewall caches fragmented packets
• B. After the direct forwarding of fragmented packets is configured, the firewall will forward the fragmented packets that are not the first fragmented packets according to the interzone security policy.
• C. For fragmented packets,NATALGnot supportedSIPFragmented Packet Processing
• D. By default, aIPV4The maximum number of fragment buffers for packets is32,OneIPV6The maximum number of fragment buffers for packets is255

Answer: ACD

NEW QUESTION 17

in deploymentIPSec VPN, which of the following is the main application scenario of tunnel mode?

• A. between host and host
• B. Between the host and the security gateway
• C. between security gateways
• D. between host and server

Answer: C

NEW QUESTION 18

In order to obtain criminal evidence, it is necessary to master the technology of intrusion tracking. Which of the following options are correct for the description of tracking technology? (multiple choice)

• A. Packet logging technology through the tracedIPInsert trace data into packets to mark packets on each router mentioned
• B. Link detection technology determines the information of the attack source by testing the network connection between routers
• C. Packet marking technology extracts attack source information by logging packets on routers and then using data drilling techniques
• D. Shallow mail behavior analysis can achieveIPlandAnalysis of information such as address, sending time, sending frequency, number of recipients, shallow email headers, etc.

Answer: ABD

NEW QUESTION 19
......