【多选题】
涉密项目负责人是指___
A. 某一涉密科研项目的负责人
B. 某一涉密科研课题的负责人
C. 二级单位(部门)的负责人
D. 单位分管保密工作负责人
查看试卷,进入试卷练习
微信扫一扫,开始刷题
答案
AB
解析
暂无解析
相关试题
【多选题】
保密委员会(保密工作领导小组)的职责是___
A. 对保密工作负领导责任
B. 为保密工作机构履行职责提供人力、财力、物力等条件保障
C. 对保密工作进行研究、部署和总结
D. 及时解决保密工作中的重要问题
【多选题】
按照《武器装备科研生产单位一级保密资格标准》的规定,专职保密工作人员配备的要求是___
A. 涉密人员 1000 人(含)以上的,专职工作人员配备不得少于 4 人
B. 涉密人员 500 人(含)以上至 1000 人以下的,专职工作人员不得少于 3 人
C. 涉密人员 100 人以下的,专职工作人员不得少于 1 人
D. 涉密人员 100 人(含)以上至 500 人以下的,专职工
【多选题】
按照《武器装备科研生产单位二级保密资格标准》规定,专职保密工作人员配备的要求是___
A. 涉密人员 1000 人(含)以上的,专职保密工作人员配备不得少于 3 人
B. 涉密人员 200 人(含)以上至 1000 人以下的,专职工作人员配备不得少于 2 人
C. 涉密人员 200 人以下的,专职工作人员不得少于 1 人
D. 涉密人员 100 人以下的,专职工作人员不少于 1 人
【多选题】
有关涉密人员管理正确的说法是___
A. 进入涉密岗位的人员应当通过审查和培训
B. 单位应当与涉密人员签订保密承诺书
C. 对在岗涉密人员进行保密教育培训
D. 违反保密规定的涉密人员应当及时调离涉密岗位
【多选题】
有关国家秘密载体管理正确的说法是___
A. 国家秘密载体应当按照有关规定做出国家秘密标志,标明密级和保密期限
B. 未定稿的涉密电子文档也应当按照有关规定做出国家秘密标志,标明密级和保密期限
C. 销毁磁介质国家秘密载体时应当将涉密信息全部删除干净
D. 因工作需要携带国家秘密载体外出应当按照有关规定履行审批手续,并采取保密措施
【多选题】
下列有关国家秘密载体管理错误的说法是___
A. 国家秘密载体都应当存放在密码保险柜中
B. 对体积较大,不便于存放在保密柜中的密品,其保管场所应当具备相应的保密防护措施
C. 涉密人员岗位调整以后,仍然在本单位其他涉密岗位工作的不需要清退所保管和使用的国家秘密载体
D. 涉密人员辞职时应当在办理完辞职手续后,清退所有保管和使用过的国家秘密载体
【多选题】
国家秘密载体管理应当注意的事项是___
A. 严格控制国家秘密载体的接触范围
B. 做好对未定稿的涉密过程文件的管理
C. 做好对涉密存储介质的管理
D. 无论绝密级还是机密级国家秘密载体都应当存放在密码文件柜中
【多选题】
为防止涉密计算机在使用时被他人窥视,应___
A. 避免显示屏幕正对门、窗或者透明过道
B. 采取安全隔离措施
C. 设置屏幕保护,确保离开时屏幕处于关闭状态
D. 放置于要害部门、部位
【多选题】
在口令设置中,属于易被破解口令的有___
A. 使用计算机的用户名(账号)作为口令
B. 使用自己或者亲友的生日、电话作为口令
C. 使用常用英文单词作为口令
D. 使用数字、英文字母和特殊字符的混合组合
【多选题】
从互联网拷贝信息至涉密计算机,下列哪些操作不符合保密要求___
A. 直接用涉密 U 盘从互联网拷贝至涉密计算机
B. 用非涉密 U 盘从互联网拷贝至涉密计算机
C. 在中间机上采用刻录只读光盘方式,拷贝至涉密计算机
D. 在中间机上使用写保护功能 U 盘拷贝至涉密计算机,该 U 盘在涉密计算机上使用时处于只读状态
【多选题】
关于涉密计算机的使用,以下行为中错误的有___
A. 根据工作需要,可以安装摄像头
B. 可以安装 IP 服务器端,面向系统用户提供涉密文档资料下载和上传
C. 在计算机上安装个人的硬盘,作为备份之用
D. 根据工作需要,可以使用个人 U 盘
【多选题】
涉密计算机禁止使用具有无线功能的外部设备,下列哪些属于具有无线功能的外部设备___
A. 无线键盘
B. 无线鼠标
C. 普通 U 盘
D. USB 蓝牙适配器
E. USB 无线网卡
F. 无线耳机
【多选题】
当本单位需要将涉密文件与其他单位进行交换时,下列交换方式中不符合保密要求的是___
A. 如果外单位带涉密 U 盘来,在专用的供涉密文件交换的涉密转换计算机上进行杀毒处理,再将涉密文件拷至对方 U 盘
B. 在专用的供涉密文件交换的涉密转换计算机上采取刻录光盘的方式
C. 在专用的供涉密文件交换的涉密转换计算机上将文件拷贝至本单位专供信息交换用的涉密 U 盘
D. 使用外单位带来的 U 盘直接将涉密文件拷贝出来
【多选题】
涉密计算机应当粘贴标识,下面符合要求的是___
A. 标识应当粘贴在显示器上的明显位置
B. 标识损毁应当及时更换
C. 标识不得自私修改、涂抹、擦除
D. 标识应注明涉密等级及责任人
【多选题】
下列说法正确的是___
A. 涉密信息系统经单位保密工作机构测试后即可投入使用
B. 涉密信息系统投入运行前应当经过国家保密行政管理部门审批
C. 涉密计算机重装操作系统后可降为非涉密计算机使用
D. 未经单位信息管理部门批准不得自行重装操作系统
【多选题】
处理国家秘密的办公自动化设备保密管理要求是___
A. 禁止连接国际互联网和其他公共信息网络
B. 禁止连接内部非涉密信息系统
C. 维修报废应按照有关规定严格管理
D. 可以使用非涉密办公自动化设备
【多选题】
涉密办公自动化设备的处理,不符合保密要求的有___
A. 将淘汰的一体式数字复印机转赠给希望小学
B. 将淘汰的办公自动化设备处理给本单位人员
C. 将淘汰的办公自动化设备按单位规定履行报废审批程序
D. 将淘汰的办公自动化设备按相关规定销毁
【多选题】
单位召开涉密会议应注意的是___
A. 应当在具备安全保密条件的场所召开
B. 重要涉密会议应当制定保密方案
C. 会议涉密载体发放、清退、保管和销毁应当指定人员负责,履行相关手续
D. 严格控制与会人员范围,对进入会场人员进行身份登记确认
【多选题】
新闻宣传管理的保密要求是___
A. 涉及武器装备科研生产事项的宣传报道,应当经单位业务主管部门保密审查
B. 需要报上级主管部门审批的,应当履行报批手续
C. 不得接受新闻媒体采访
D. 涉及涉密武器装备科研生产事项的参观、采访,应当按规定履行审批程序,提出保密要求
【多选题】
分包涉密项目的保密要求是___
A. 应当选择具有相应保密资格的单位
B. 签订的合同中应当有保密条款或者签订保密协议
C. 保密资格单位的涉密信息系统集成等业务,从取得相关涉密资质的单位中选择
D. 监督检查保密条款或者保密协议执行情况
推荐试题
【单选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【单选题】
Which product can be used to provide application layer protection for tcp port 25 traffic?___
A. ESA
B. CWS
C. WSA
D. ASA
【单选题】
which iPS mode is less secure than other options but allows optimal network through put ?___
A. inline mode
B. inline-bypass mode
C. transparent mode
D. Promiscuous mode
【单选题】
Which feature of the Cisco Email security Appliance can mitigate the impact of snowshoe spam and sophisticated phishing attack?___
A. reputation based filtering
B. signature based IPS
C. contextual analysis
D. graymail management and filtering
【单选题】
Which type of social-engineering attack uses normal tele phone service as the attack vector?___
A. smishing
B. dialing
C. phishing
D. vishing
【单选题】
Which quantifiable item should you consider when you organization adopts new technologies?___
A. exploits
B. vulnerability
C. threat
D. Risk
【单选题】
Referencing the ClA model, in which scenario is a hash- only function most appropriate ?___
A. securing data at rest
B. securing real-time traffic
C. securing data in files
D. securing wireless transmissions
【单选题】
Which ports must be open between a aaa server and a microsoft server to permit Active Directory authentications?___
A. 445 and 389
B. 888 and 3389
C. 636 and 4445
D. 363 and 983
【单选题】
Refer to the exhibit for which reason is the tunnel unable to pass traffic___
A. the tunnel is failing to receive traffic from the remote peer
B. the local peer is unable to encrypt the traffic
C. the ip address of the remote peer is incorrect
D. UDP port 500 is blocked
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
How can you protect CDP from reconnaissance attacks?___
A. Enable dynamic ARP inspection on all untrusted ports.
B. Enable dot1x on all ports that are connected to other switches.
C.
D. isable CDP on ports connected to endpoints.
【单选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which option is a key security compone nt of and MDM deployment ?___
A. using network-specific installer packages
B. using an application tunnel by default
C. using self-signed certificates to validate the server
D. using MS-CHAPv2 as the primary
E. AP method
【单选题】
Which Firepower Management Center feature detects and block exploits and hack attempts?___
A. Content blocker
B. file control
C. intrusion prevention
D. advanced malware protection
【单选题】
hich description of the nonsecret numbers that are used to start a Diffie- Hellman exchange is ture?___
A. They are preconfigured prime integers.
B. They are large pseudorandom numbers.
C. They are very small numbers chosen from a table of known valuses
D. They are numeric values extracted from ha shed system hostnames
【多选题】
Which two characteristics of an application layer firewall are true?___
A. provides stateful firewal functionality
B. has low processor usage
C. provides protection for multiple applications
D. provides rever se proxy services
E. is immune to URL manipulation
【多选题】
Which two devices are components of the BYOD architectural framework?___
A. Nexus 7010 switch
B. Cisco 3945 Router
C. Identify Services Engine
D. Wireless Access oints
E. Prime Infrastructure
【多选题】
Which two actions can a zone based firewall take when looking at traffic? ___
A. forward
B. inspect
C. drop
D. broadcast
E. filter
【多选题】
n which two situations should you use in-band management?___
A. when management applications need concurrent access to the device
B. when you require administrator access from multiple locations
C. when a network device fails to forward packets
D. when you require ROMMON access
E. when the control plane fails to respond
【多选题】
What are two ways to prevent eavesdropping when you perform device management tasks?___
A. Use an SSH connection.
B. Use SNMPv3
C. Use out-of-band management
D. Use SNMP
E. Use in-band management
【多选题】
Which two features are commonly used CoPP and CPPr to protect the control plane? ___
A. QoS
B. traffic classification
C. access lists
D. policy maps
E. class maps
F. Cisco Express Forwarding
【多选题】
Which four tunne ling prot ocols are enabled in the Dfit GrpPolicy group policy ?___
A. Clientless SSL VPN
B. SSL VPN Client
C. PPTP
D. L2TP/IPsec
E. IPsec IKEv1
F. IPsec IKEv2
【多选题】
Which two statements regarding the aSA VPN configurations are correct?___
A. The asa has a certificate issued by an external certificate authority associated to the ASDM TrustPoint1
B. The Default WEBVPNGroup Connection Profile is using the aaa with RADIUS server method
C. The Inside-srvbook mark references the https://192.168.1.2url
D. Only Clientless SSL VPN access is allowed with the Sales group policy
E. Any Connect, IPSec IKEv1, and IPSec IKEv2 VPN access is enabled on the outside interface
F. The Inside -SRV bookmark has not been applied to the Sales group policy
【多选题】
Which three ESP fields can be encrypted during transmission?___
A. Security Parameter Index
B. Sequence Number
C. MAC Address
D. Padding
E. Pad length
F. Next Header
【多选题】
.Which three statements de scribe DHCP spoofing attacks?___
A. They can modify traffic in transit.
B. They are used to perform man- in-the-middle attacks
C. They use ARP poisoning
D. They can access most network devices
E. They protect the ide ntity of the attacker by masking the DHCP address.
F. They are can physically modify the network gateway.
【多选题】
Which statement about the communication between interfaces on the same security level is true?___
A. Interfaces on the same security level require additional configuration to permit interinterface communication
B. Configuring interfaces on the same security level can cause asymmetric routing
C. All traffic is allowed by default between interfaces on the same security level
D. You can configure only one interface on a n individual security level
【多选题】
In which two situations should you use in band management? ___
A. when the control plane fails to respond
B. when you require administrator access from multiple locations
C. when you require ROMMON access.
D. where a network device fails to forward packets
E. when multiple ma nagement applications need concument access to the device.
【多选题】
Which two features are supported in a VRF-aware softwar infrastructure before VRF-lite?___
A. multicast
B. fair queuing
C. WCCP
D.
E. IGRP
【多选题】
.Which loS command do you enter to test authentication again a AAA server?___
A. dialer aaa suffix <suffix> password <password>
B. ppp authentication chap pap test
C. test aaa-server authentication dialer group user name <user> password <password>
D. aaa authentication enable default test group tacases
【多选题】
Which two statements about the self zone on a cisco Xone based policy firewall are true?___
A. Multiple interfaces can be assigned to the self zone
B. it supports stateful inspections for multicast traffic
C. zone pairs that include the self zone apply to traffic transiting the device.
D. it can be either the source zone or the destination zone
E. traffic entering the self zone must match a rule
【多选题】
Which type of attack can exploit design flaws in the implementation of an application without ?___
A. DHCP starvation attacks
B. low-rate dos attacks
C. application DDos flood attacks
D. application DDoS flood attacks
E. volume-based DDoS attacks
【单选题】
Which type of firewall can server as the interme diary between a client and a server ?___
A. Stateless firewall
B. application firewall
C. proxy firewall
D. personal firewall
【单选题】
What is the highest security level that can be configured for an interface on an ASA?___
A. 0
B. 50
C. 10
D. 200
【单选题】
Which term refers to the electromagnetic interference that can radiate from network cables?___
A. Gaussian distributions
B. Doppler waves
C. emanations
D. multimode distortion
【单选题】
How does a zone pair handle traffic if the policy de fination of the zone pair is missing?___
A. It inspects all traffic.
B. It drops all traffic.
C. It permits all traffic wihtout logging
D. It permits and logs all traffic
【单选题】
default how does a zone based firewall handle traffic to add from the self zone?___
A. It permits all traffic without inspection
B. It inspects all traffic to determine how it is handled
C. It permits all traffic after inspection
D. It frops all traffic
【单选题】
Which command should beused to ena ble AAA Authentication to determine if a user can access the privilege command level?___
A. aaa authentication enable local
B. aaa authentication enable level=
C. aaa authentication enable method de fault
D. aaa authentication enable defa ult local
【单选题】
On an ASA, the policy indicates that traffic should not be translated is often referred to as which of the following?___
A. NAT zero
B. NAT forward
C. NAT nul
D. NAT allow
【单选题】
Which protocol offers data Integrity encryption, authentication, and anti-replay functions for IPSec VPN?___
A. ESP protocol
B. IKEv3 Protocol
C. AH protoco
D. IKEv1 Protocol
【单选题】
Which component offers a variety of security Solution, including firwall, IF Antivirus and antiphishing features?___
A. Cisco loS router
B. Cisco ASA 5500 Ser ies security appliance
C. Cisco ASA 5500 X series Next Gen Security appliance
D. Cisco 4200 series IPS appliance
