최신Huawei HCIA-Security V4.0 - H12-711_V4.0무료샘플문제
문제1
How frequently should antivirus signature databases be updated to ensure the effectiveness of an antivirus program or software?
How frequently should antivirus signature databases be updated to ensure the effectiveness of an antivirus program or software?
정답: C
설명: (ITDumpsKR 회원만 볼 수 있음)
문제2
IPSec VPN uses an asymmetric algorithm to calculate the ___ key to encrypt data packets.
IPSec VPN uses an asymmetric algorithm to calculate the ___ key to encrypt data packets.
정답:
symmetry
문제3
Which layer of data packets does a packet filtering firewall check?
Which layer of data packets does a packet filtering firewall check?
정답: D
설명: (ITDumpsKR 회원만 볼 수 있음)
문제4
Arrange the following processes in the correct order based on the PKI lifecycle.
Arrange the following processes in the correct order based on the PKI lifecycle.
정답:
Explanation:
* Certificate application
* Certificate issuing
* Certificate storage
* Certificate verification
* Certificate usage
* Certificate update
* Certificate revocation
The PKI lifecycle describes the complete process a digital certificate goes through from creation to termination. The first stage is certificate application , where a user or device generates a key pair and submits a certificate request to the certification authority or registration authority.
After the request is approved, the CA performs certificate issuing , which involves creating and signing the certificate using the CA's private key. Once issued, the certificate must be securely saved on the device, which is the certificate storage phase. Proper storage ensures that the certificate and the associated private key can be safely used when authentication or encryption is required.
Before using a certificate in communication, systems perform certificate verification . This step checks the certificate chain, validity period, and CA signature to confirm that the certificate is trustworthy. After successful verification, the certificate enters the certificate usage phase, where it is used for encryption, authentication, digital signatures, or secure communications such as HTTPS or IPsec.
During its lifetime, a certificate may require certificate update (renewal) when it approaches expiration.
Finally, if the certificate becomes invalid or compromised, certificate revocation is performed to terminate its trust before its expiration date.
문제5
In the TCP/P protocol core, which of the following protocols works at the application layer?
In the TCP/P protocol core, which of the following protocols works at the application layer?
정답: D
문제6
Under normal circumstances, the Emai1 protocols we often talk about include ____, POP3, and SMTP.
Under normal circumstances, the Emai1 protocols we often talk about include ____, POP3, and SMTP.
정답:
IMAP
문제7
____- The goal is to provide a rapid, composed and effective response in emergency situations, thereby enhancing the ability of the business to recover immediately from a disruptive event.
____- The goal is to provide a rapid, composed and effective response in emergency situations, thereby enhancing the ability of the business to recover immediately from a disruptive event.
정답:
business continuity plan
문제8
When forwarding a TCP, UDP, or ICMP packet, the firewall needs to query the session table in order to determine the connection to which the packet belongs and take corresponding measures.
When forwarding a TCP, UDP, or ICMP packet, the firewall needs to query the session table in order to determine the connection to which the packet belongs and take corresponding measures.
정답: B
설명: (ITDumpsKR 회원만 볼 수 있음)
문제9
The RADIUS protocol specifies how to pass user information, billing information, authentication and billing results between the NAS and the RADIUS server, and the RADIUS server is responsible for receiving the user's connection request, completing the authentication, and returning the result to the NAS.
The RADIUS protocol specifies how to pass user information, billing information, authentication and billing results between the NAS and the RADIUS server, and the RADIUS server is responsible for receiving the user's connection request, completing the authentication, and returning the result to the NAS.
정답: B
문제10
In the authentication policy of the firewall, _____ allows the user to not need to enter the user name and password, but can obtain the corresponding relationship between the user and the IP, so as to carry out policy management based on the user.
In the authentication policy of the firewall, _____ allows the user to not need to enter the user name and password, but can obtain the corresponding relationship between the user and the IP, so as to carry out policy management based on the user.
정답:
Certification-free
문제11
What are the correct entries in the following description of firewall security zones?
What are the correct entries in the following description of firewall security zones?
정답: A,B,D
문제12
IKE SA is a one-way logical connection, and only one IKE SA needs to be established between two peers.
IKE SA is a one-way logical connection, and only one IKE SA needs to be established between two peers.
정답: A
문제13
Which of the following statements are correct about the status of the firewall VGMP group?
Which of the following statements are correct about the status of the firewall VGMP group?
정답: A,B,C,D
설명: (ITDumpsKR 회원만 볼 수 있음)