-
Notifications
You must be signed in to change notification settings - Fork 7.6k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
68 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,68 @@ | ||
# 2020网安期末 | ||
|
||
题型是判断+计算+大题,卷面一共是50分,不是100分 | ||
|
||
|
||
|
||
## 判断 | ||
|
||
判断只有5分,10个题 | ||
|
||
目前记得的题目: | ||
|
||
- 非对称一定比对称好 | ||
- SSL工作在应用层和传输层之间,SSL握手协议是为SSL记录协议协商参数 | ||
- Blowfish RC5 DES AES中只有AES不具备Feistel结构 | ||
- 以1比特为单位加密的算法是流密码 | ||
- 大型网络中,KDC分配密钥的模式,通常是集中式的 | ||
- 防火墙不能防外贼 | ||
|
||
|
||
|
||
## 计算 | ||
|
||
|
||
|
||
1. (这个题3分)一道Enigma,告诉你按下按键,等弹起之后滚筒才会滚动1格 | ||
|
||
2. - 利用Hill先加密字符串WINTER,Hill的矩阵是一个3*3的矩阵 | ||
|
||
- 再用加密之后的密文作为playfair的密钥词,再加密COMPUTER | ||
|
||
3. (这个题15分) | ||
|
||
- 利用DH算法,计算密钥(q=19,a=3,XA=3,XB=6),把密钥作为5位二进制数ABCDE,再以AEAEBCDBCD构造出10位会话密钥 | ||
|
||
- 用上面得到的10位密钥,作为S-DES的密钥,再加密一个8位的二进制串 | ||
|
||
|
||
|
||
## 大题 | ||
|
||
1. A给B发消息,打算用MD5做消息认证,同时需要(*好像是用RSA*)签名,最后用3-DES加密,画出A给B发消息的图 | ||
|
||
2. (这个题好像8分) | ||
|
||
- 传输邻接:加密前认证,画报文图 | ||
|
||
- 一个隧道SA中有一个传输SA:认证前加密,画报文图 | ||
|
||
*两问中的加密前认证,认证前加密可能记反了* | ||
|
||
3. (这个题8分) | ||
|
||
- HTTPS提供什么安全机制?能否防止ARP欺骗和报文篡改 | ||
- 双签名:为什么要使用双签名?具体的流程是什么(画图) | ||
|
||
4. (这个题3分)有一个“求职信”的恶意软件,列举了一些特性,分析它有哪些恶意属性 | ||
|
||
- 利用MS outlook的漏洞,在用户打开、浏览带毒的邮件软件后,求职信开始运行 | ||
|
||
- 求职信运行后会在本地生成可执行文件,会把杀毒软件的病毒数据库清除掉 | ||
|
||
- 求职信会向外发送邮件,以“JPEG”等形式伪装,文件名也是随机的字符串 | ||
|
||
- 求职信在某一天(忘记具体日期了)会爆发,把用户磁盘数据删除,很难恢复 | ||
|
||
*可能还有其他的,忘记了* | ||
|