CU HI V BI TP.

Bng 1.1: Mt s dch v ph bin trn TCP

Cng
20
21
22
23
25
80
110
143
443

Dch v
FTP, knh iu khin (Control port)
FTP, knh d liu (Data port)
Secure Shell (SSH)
Telnet
Simple Mail Transfer Protocol (SMTP)
HyperText Transfer Protocol (HTTP)
Post Office Protocol, version 3 (POP3)
Internet Message Access Protocol
Secure Sockets Layer (SSL)

A- Cu hi trc nghim
Cu 1. Th no l tnh bo mt ca h thng thng tin?
a- L c tnh ca h thng trong thng tin c gi b mt khng cho ai truy
xut.
b- L c tnh ca h thng trong tt c thng tin c lu tr di dng mt m.
c- L c tnh ca h thng trong ch c nhng ngi dng c cho php mi
c th truy xut c thng tin
d- Tt c u ng
Cu 2. Chn cu ng khi ni v tnh bo mt ca h thng thng tin:
a- Mt h thng m bo tnh b mt (confidential) l mt h thng an ton (secure).
b- Tnh b mt ca thng tin bao gm tnh b mt v s tn ti ca thng tin v tnh
b mt ni dung thng tin.
c- Tnh b mt ca thng tin bao gm tnh b mt v ni dung thng tin v tnh b
mt v ngun gc thng tin.
d- Tt c u sai.
Cu 3. Th no l tnh ton vn ca h thng thng tin?
a- L c tnh ca h thng trong thng tin khng b sa i hoc xo b bi
ngi s dng.
b- L c tnh ca h thng trong thng tin khng b thay i theo thi gian
c- L c tnh ca h thng trong thng tin khng b truy xut bi nhng ngi
khng c php.
d- L c tnh ca h thng trong thng tin khng b thay i, h hng hay mt
mt.
Cu 4. Chn cu ng khi ni v tnh ton vn ca thng tin:
a- Mt h thng an ton l mt h thng m bo tnh ton vn ca thng tin.

b- Tnh ton vn ca thng tin bao gm ton vn v ni dung v ton vn v ngun

gc thng tin.
c- Tnh ton vn ca thng tin bao gm ton vn v ni dung v s tn ti ca thng
tin.
d- Cu a v b.
Cu 5. Cc c ch m bo tnh ton vn ca thng tin:
a- Gm cc c ch ngn chn v c ch pht hin cc vi phm v ton vn thng
tin.
b- Mt m ho ton b thng tin trong h thng.
c- Lu ton b thng tin trong h thng di dng nn.
d- Tt c cc c ch trn.
Cu 6. Hnh vi no sau y nh hng n tnh ton vn ca h thng thng tin:
a-

Mt sinh vin sao chp bi tp ca mt sinh vin khc.

b-

Virus xa mt cc tp tin trn a cng.

c-

Mt in thng xuyn lm h thng my tnh lm vic gin an.

d-

Tt c cc hnh vi trn.

Cu 7. Hnh vi no sau y nh hng n tnh kh dng ca h thng thng tin:

a-

Mt sinh vin sao chp bi tp ca mt sinh vin khc.

b-

Virus xa mt cc tp tin trn a cng.

c-

Mt in thng xuyn lm h thng my tnh lm vic gin an.

d-

Tt c cc hnh vi trn.

Cu 8. Hnh vi no sau y nh hng n tnh b mt ca h thng thng tin:

a-

Mt sinh vin sao chp bi tp ca mt sinh vin khc.

b-

Virus xa mt cc tp tin trn a cng.

c-

Mt in thng xuyn lm h thng my tnh lm vic gin an.

d-

Tt c cc hnh vi trn.

Cu 9. Cc c ch bo v tnh b mt ca thng tin:

a- Mt m ho ton b thng tin trong h thng.
b- Xy dng cc c ch iu khin truy xut (access control) ph hp.
c- Lp t cc phng tin bo v h thng thng tin mc vt l.
d- Tt c cc c ch trn.
Cu 10. Th no l tnh kh dng ca h thng thng tin?
a- L tnh sn sng ca thng tin trong h thng cho mi nhu cu truy xut.
b- L tnh sn sng ca thng tin trong h thng cho cc nhu cu truy xut hp l.
c- L tnh d s dng ca thng tin trong h thng.
d- Tt c u sai.

Cu 11. Th no l nguy c i vi h thng thng tin?

a- L cc s kin, hnh vi nh hng n s an ton ca h thng thng tin.
b- L cc thit hi xy ra i vi h thng thng tin
c- L cc hnh vi v ca ngi s dng lm nh hng n tnh kh dng ca h
thng thng tin.
d- Tt c u ng.
Cu 12. Cc nguy c no sau y c th nh hng n tnh kh dng ca h thng thng tin:
a- Thit b khng an ton.
b- Cc tn cng t chi dch v (DoS v DDoS).
c- Virus v cc loi phn mm ph hoi khc trn my tnh.
d- Tt c cc nguy c trn.
Cu 13. Chn cu sai khi ni v cc nguy c i vi s an ton ca h thng thng tin:
a- Nhng k tn cng h thng (attacker) c th l con ngi bn trong h thng.
b- Ngi s dng khng c hun luyn v an ton h thng cng l mt nguy c
i vi h thng.
c- Mt h thng khng kt ni vo mng Internet th khng c cc nguy c tn
cng.
d- Xm nhp h thng (intrusion) c th l hnh vi xut pht t bn ngoi hoc t
bn trong h thng.
Cu 14. Chn cu ng khi ni v cc nguy c v ri ro i vi h thng thng tin:
a- Tt c cc ri ro u c t nht mt nguy c i km vi n.
b- C th ngn chn ri ro bng cch ngn chn cc nguy c tng ng.
c- Mc tiu ca an ton h thng l ngn chn tt c cc ri ro xy ra trn h thng.
d- Tt c cc cu trn.
Cu 15. Nguyn tc xy dng mt h thng bo mt:
a- p dng cc c ch an ton ph hp vi h thng.
b- Xy dng cc chnh sch an ton cht ch.
c- Xy dng chnh sch bo mt v trin khai cc c ch m bo chnh sch .
d- Tt c u ng.
Cu 16. Mc tiu ca chnh sch bo mt h thng:
a- Xc nh cc trng thi an ton m h thng cn m bo.
b- Ngn chn cc nguy c i vi h thng.
c- Hn ch cc ri ro i vi h thng.
d- Tt c cc cu trn.
Cu 17. Mc tiu ca an tan h thng theo th t u tin gim dn:
a- Ngn chn, pht hin, phc hi.

b- Pht hin, ngn chn, phc hi.

c- Pht hin v ngn chn.
d- Pht hin v phc hi.
Cu 18. Chn cu ng khi ni v cc m hnh iu khin truy xut (access control):
a- MAC l c ch iu khin bt buc c p dng cho ton h thng
b- C ch qun l theo nhm trn Windows 2000 l mt dng thc thi tng ng
vi c ch RBAC.
c- a s cc h iu hnh u c thc hin m hnh DAC.
d- Tt c u ng.
Cu 19. Cc c ch xc thc thng dng trong h thng thng tin:
a- Dng cc c ch qun l truy xut tp tin trn a cng.
b- Dng c ch phn quyn cho ngi s dng.
c- Dng user-name/password.
d- Tt c u sai.
Cu 20. Cc giao thc xc thc thng dng trong h thng thng tin:
a- Kerberos
b- CHAP
c- C hai u sai
d- C hai u ng..
Cu 21. Chc nng ca c ch kim tra (auditing) trn h thng:
a- Ghi li (Logger), phn tch (Analyzer) v thng bo (Notifier).
b- Theo di v ghi nhn cc s kin v hnh vi din ra trn h thng.
c- Cung cp thng tin phc hi h thng khi c s c.
d- Cung cp thng tin lm chng c cho cc hnh vi vi phm chnh sch an ton h
thng.
Cu 22. Chn cu ng:
a- Tn cng kiu Interception tc ng vo c tnh ton vn ca h thng thng tin.
b- Modification l kiu tn cng vo c tnh b mt ca h thng thng tin.
c- Tn cng bng hnh thc gi danh (farbrication) tc ng n c tnh ton vn
ca thng tin.
d- Vn ph nhn hnh vi (repudiation) l mt hnh thc tn cng h thng kiu
Interruption.
Cu 23. Phng thc tn cng no ngn chn cc user hp l truy xut cc ti nguyn h thng?
a- Sniffing
b- Spoofing
c- DoS
d- Man-In-The-Middle.

Cu 24. Chn cu ng:

a- C th ngn chn cc tn cng trn b m (buffer overflow) bng cc phn mm
antivirus.
b- C th ngn chn cc tn cng trn b m bng cch ci t firewall.
c- Tt c cc phn mm vit bng ngn ng C u c cha li trn b m.
d- Li trn b m ch xy ra trn cc phn mm c nhp liu t ngi dng.
Cu 25. Mt my tnh nghe ln thng tin trn mng v dng cc thng tin ny xm nhp tri
php vo mt h thng thng tin, y l phng thc tn cng no?
a- Spoofing
b- Replay
c- Man-In-The-Middle
d- Sniffing
Cu 26. Phng thc tn cng no sau y khng da trn bn cht ca giao thc TCP/IP:
a- SYN/ACK flooding
b- TCP sequence number attack
c- ICMP attack
d- Software exploitation
Cu 27. Chn cu ng khi ni v cc phng thc tn cng bng phn mm c (malicious
code):
a- Virus c th t sao chp v lan truyn thng qua mng my tnh.
b- Worm l loi phn mm c hot ng da vo mt phn mm khc.
c- Trojan horse l mt loi phn mm c nhng c tn ging nh cc tp tin bnh
thng.
d- Logic bomb khng th ph hoi h thng nu ng h h thng lun chm hn
thi gian hin hnh.
Cu 28. Chn cu ng khi ni v firewall:
a- Firewall ch c th ngn chn cc tn cng t bn ngoi h thng.
b- Tt c cc gi d liu i qua firewall u b c ton b ni dung, nh firewall
mi c c s phn bit cc tn cng vi cc loi lu lng khc.
c- Nu m tt c cc cng (port) trn firewall th firewall s hon ton b v hiu
ho.
d- Tt c u ng.
Cu 29. ng dng no sau y c chc nng thay i a ch IP ca tt c cc gi d liu i qua
n:
a- IDS
b- Proxy
c- NAT
d- Khng c ng dng no nh vy

Cu 30. Nguyn l hot ng ca IDS:

a- Phn tch cc gi d liu lu thng trn mng tm du hin ca tn cng.
b- Phn tch cc d liu trong nht k h thng (system log) pht hin du hiu
ca tn cng.
c- Duy tr mt c s d liu v cc du hiu tn cng (signature database).
d- Tt c cc iu trn.
Cu 31. Chn cu ng khi ni v IDS:
a- IDS l mt ng dng c chc nng pht hin v ngn chn cc tn cng vo h
thng thng tin.
b- IDS ch c th pht hin c cc tn cng t bn ngoi vo h thng.
c- Network-based IDS khng c kh nng pht hin tn cng vo mt my ch c
th.
d- Signature-based IDS khng c kh nng pht hin cc tn cng hon ton mi,
cha tng c m t trong c s d liu.
B- Bi tp
Cu 32. Lit k v sp xp cc phng thc tn cng theo hai loi: tn cng ch ng (active
attacks) v tn cng th ng (passive attacks).
Cu 33. Lit k v sp xp cc phng thc tn cng theo hai loi: tn cng vo giao thc
TCP/IP v tn cng vo phn mm (chng trnh ng dng v h iu hnh).
Cu 34. Ci t v cu hnh phn mm IDS Snort trn H iu hnh Linux.
Cu 35. Ci t v cu hnh ISA server 2004 trn Windows.

Bng 2.1: Quan h gia di kho v thi gian d kho.

Chiu di kho
(bit)

S kho ti a

Thi gian d kho vi tc

th 1 kho /ms

Thi gian d kho vi tc

th 106 kho /ms

32

232 = 4,3 * 109

231 ms = 35,8 pht

2,15 milli giy

56

256 = 7,2 * 1016

255 ms = 1.142 nm

10,01 gi

128

2128 = 3,4 * 1038

2127 ms = 5,4 * 1024 nm

5,4 * 1018 nm

168

2168 = 3,7 * 1050

2167 ms = 5,9 * 1036 nm

5,9 * 1030 nm

26! = 4 * 1026

2 * 1026 ms = 6,4 x 1012 nm

6.4 * 106 nm

26 k t
(hon v)

Thut ton
DES

Chiu di kha
56 bit

S vng m ha
16

Php tan s dng

XOR, S-box

ng dng
SET,

3DES

112 hoc 168 bit

48

AES

128, 192 hoc

256 bit
128 bit

10, 12 hoc 14

Thay i, ti a
448 bit
Thay i, ti a
2048 bit
40 n 128 bit

16

IDEA
Blowfish
RC5
CAST-128

Thay i, ti a
255 vng
16

XOR, S-box

XOR, dch, S-box

XOR, cng nh phn,
nhn nh phn
XOR, S-box, cng nh
phn
Cng nh phn, tr nh
phn, XOR, php quay
Cng, tr nh phn,
XOR, quay, S-box

Kerberos
PGP,
S/MIME, cc
ng
dng
qun l kha
SSL
PGP
Cc cng c
mt m.
Cc cng c
mt m.
PGP

Bng 2.2: Cc phin bn SHA

Thng s
Kch thc m bm (bit)
Kch thc thng tin gc (bit)
Kch thc khi (bit)
di t (bit)
S bc thc hin (bc)

SHA-1
160
< 264
512
32
80

SHA-256
256
< 264
512
32
64

SHA-384
384
< 2128
1024
64
80

SHA-512
512
<2128
1024
64
80

CU HI V BI TP.
A- Cu hi trc nghim.
Cu 1. Chc nng ca mt m thng tin:
a- Bo v tnh ton vn ca thng tin.
b- Bo v tnh b mt ca thng tin.
c- Bo v tnh kh dng ca thng tin .
d- Bo v tnh khng th ph nhn ca thng tin.
Cu 2. Cc nguy c ca mt h thng mt m:
a- Tn cng bng cch d kho b mt (brute force attack).
b- Tn cng bng phng php phn tch m (crypanalysis).
c- Tn cng t chi dch v
d- Cu a v b.
Cu 3. Mt h thng m ho quy c dng kho di 128 bit. Nu dng phng php tn cng
brute force th phi th trung bnh bao nhiu ln v thi gian cn thit thc hin nu

tc x l l mt t ln trong mt giy?
a- Phi th 2128 ln, thi gian th l 5,4 * 1018 nm.
b- Phi th 264 ln, thi gian th l 5,4 * 1018 nm.
c- Phi th 2127 ln, thi gian th l 5,4 * 1018 nm.
d- Phi th 2128 ln, thi gian th l 18 nm.
Cu 4. C ch trao i kho b mt trong m ho i xng?
a- A v B trao i kho vi nhau bng e-mail.
b- A v B trao i kho vi nhau bng mt phng tin vt l.
c- A gi kho b mt cho mt thc th th 3 bng e-mail, th cth th 3 ny s gi
li kho ny cho B cng bng e-mail.
d- Mt trong 3 cch trn u c.
Cu 5. Chn cu ng khi ni v cu trc mt m Feistel:
a- Tt c cc thao tc trong cu trc u c thao tc ngc tng ng.
b- Cu trc Feistel da trn cc thao tc x l bit vi cc php hon v v thay th
lp li nhiu ln.
c- Kch thc khi d liu (block size) l bt k.
d- Mch m ho v mch gii m c cu trc khc nhau.
Cu 6. Chn cu ng khi ni v thut ton mt m DES:
a- Mch m ho v mch gii m l ging nhau.
b- S-box l mt hm hon v, cho kt qu ngc li vi php hon v IP.
c- Th t sinh kho ph qu trnh m ho v gii m l ging nhau.
d- Thao tc hon v PC-1 c thc hin 16 ln trong qu trnh m ho v gii m.
Cu 7. Chn cu ng v an ton ca DES:
a- Ch c th tn cng h thng mt m DES bng phng php brute force.
b- Kho a vo thut ton l 64 bit, nhng thc cht ch s dng 56 bit.
c- Mch gii m TDES khng th gii m c thng tin m ho bi DES.
d- Tt c u ng.
Cu 8. Chn cu ng khi ni v chun mt m AES:
a- L chun mt m c thit k lm vic song song vi DES.
b- Kch thc khi v chiu di kho c th thay i c.
c- Mch m ho v mch gii m hon ton ging nhau.
d- Tt c u ng.
Cu 9. Chn pht biu sai khi ni v chun mt m AES:
a- Th t sinh kho ph trong qu trnh m ho v gii m hon ton ging nhau.
b- Tt c cc thao tc trong thut ton u c thao tc ngc.
c- AES khng da trn cu trc m khi Feistel.
d- Thut ton m Rijndael chnh l AES.

Cu 10. Mt h thng gm 10 thit b u cui lin lc vi nhau s dng mt m i xng. Mi

u cui s dng cc kho b mt khc nhau khi kt ni vi mi u cui khc. C bao
nhiu kho b mt trong ton b h thng?
a- 10 kho
b- 20 kho
c- 45 kho
d- 90 kho
Cu 11. Thut ton mt m no c dng trong giao thc xc thc Kerberos 4?
a- Blowfish
b- CAST-128
c- TDES
d- DES
Cu 12. ng dng ca mt m bt i xng:
a- Bo mt thng tin
b- Xc thc thng tin
c- Bo v tnh kh dng ca h thng
d- Cu a v b
Cu 13. Chn cu ng v thut ton m RSA:
a- Thut ton RSA thch hp cho thc thi bng phn cng.
b- RSA dng kho v khi d liu c kch thc c nh.
c- Mi khi thng tin n bit a vo thut ton RSA c x l nh mt s nguyn
c gi tr t 0 n 2n 1.
d- Ch c th dng kho cng khai m ho thng tin, khng th m ho thng tin
bng kho b mt.
Cu 14. So snh RSA v DES:
a- RSA c tc thc thi bng phn mm cao hn DES.
b- RSA an ton hn DES.
c- RSA da trn cc hm ton hc, cn DES da trn cc thao tc x l bit.
d- Bng cch phn tch kho cng khai th c th tm ra kho b mt ca RSA, trong
khi i vi DES, cch duy nht tm kho l th ln lt.
Cu 15. Thut ton trao i kho Diffie-Hellman:
a- L mt dng ca mt m ho bt i xng.
b- Diffie-Hellman khng c chc nng bo mt d liu m ch dng trao i
kho b mt.
c- Diffie-Hellman c th b tn cng Man-In-The-Middle.
d- Tt c u ng.
Cu 16. Chc nng ca cc hm bm (hash function)?

a- To ra mt khi thng tin ngn c nh t mt khi thng tin gc ln hn.

b- Mt m ho thng tin.
c- Xc thc ngun gc thng tin
d- Ngn chn vic ph nhn hnh vi ca ch th thng tin
Cu 17. Cc thuc tnh ca mt gii thut ch k s:
a- Phi xc nhn chnh xc ngi k v ngy gi pht sinh ch k.
b- Phi xc thc ni dung thng tin ngay ti thi im pht sinh ch k
c- Phi c kh nng cho php kim chng bi mt ngi th 3 gii quyt cc
tranh chp nu c.
d- Tt c cc cu trn.
Cu 18. Cc thng tin cn thit to ra ch l s:
a- M bm ca thng tin cn chng thc.
b- Kho b mt ca ngi k.
c- Kho cng khai ca nhm
d- Tt c cc thng tin trn
Cu 19. Chng thc kha (certificate) l g?
a- L mt s chng thc ca mt thc th c tin cy v s rng buc gia mt
thc th thng tin v kho cng khai ca thc th .
b- Chng thc kha l mt dng ca ch k s.
c- Chng thc kha l mt ng dng phn phi kho b mt trong mt m i
xng.
d- Tt c u ng.
Cu 20. Chn cu ng khi ni v PKI:
a- PKI to ra v qun l cc chng thc kha.
b- Chng thc kha sau khi to ra c th b hu b theo yu cu ca ch s hu.
c- CA l thnh phn ca PKI c chc nng to ra chng thc kha theo yu cu ca
ngi s dng.
d- Tt c u ng.
B- Bi tp.
Cu 21. Xc nh cc bit 1, 16, 33 v 48 ti ng ra vng th nht ca thut ton gii m DES, bit
rng ciphertext cha ton bit 1 v kho ban u cng l chui bit 1.
Cu 22. Chng minh rng mch m ho ca DES cng ng thi l mch gii m ca DES.
Cu 23. So snh ma trn IP v ma trn PC-1 ca DES. Rt ra kt lun g t s so snh ny?
Cu 24. Tnh 8 word u tin ca kho m rng trong thut ton m AES nu bit kho ban u
l chui 128 bit 0.
Cu 25. Thc hin m ho v gii m dng thut ton RSA vi cc d liu sau y:

a- p = 3; q = 11, e = 7; M = 5
b- p = 5; q = 11, e = 3; M = 9
c- p = 7; q = 11, e = 17; M = 8
d- p = 11; q = 13, e = 11; M = 7
e- p = 17; q = 31, e = 7; M = 2
Cu 26. User A v B trao i kho dng Diffie-Hellman vi p = 71 v g = 7.
a- Nu A chn Xa = 5, tnh Ya?
b- Nu B chn Xb = 12, tnh Yb?
c- Kho b mt dng chung gia A v B?
Cu 27. Ci t thut ton mt m DES bng C.
Cu 28. Ci t thut ton mt m RSA bng C.
----------

CU HI V BI TP.
A- Cu hi trc nghim.
Cu 1. Nguyn tc m bo an ton cho mt khu i vi ngi s dng:
a- Quy nh thi gian s dng ti a ca mt khu.
b- Khng dng mt khu qu ngn, mt khu c cha tn ngi dng, mt khu l
nhng t c ngha trong t in.
c- M ho mt khu khi lu tr.
d- Tt c u ng.
Cu 2. Trong th tc xc thc mng n gin, c ch no m bo mi th (ticket) ch c s
dng bi mt my duy nht?
a- My con phi c xc thc bi Authentication Server (AS).
b- Trong th cp cho my con c cha a ch mng ca my my con (AD C).
c- Trong th c cha nhn dng ca my ch cung cp dch v (ID V).
d- Tt c u ng.
Cu 3. Mc ch ca TGS (Ticket Granting Server) trong th thc xc thc qua mng?
a- Cho php ngi dng ch ng nhp mt ln nhng s dng c nhiu dch v.
b- Gim ti x l cho AS
c- hn ch vic gi mt khu trc tip trn mng.
d- Tt c u sai.
Cu 4. Chn cu ng v giao thc xc thc Kerberos 4:
a- S dng thut ton m ho DES
b- s dng mt dch v no , client phi thc hin 2 thao tc: xc thc vi AS
c cp th Ticket-granting-Ticket, sau xc thc vi TGS nhn c
th Service-granting-Ticket trc khi c th yu cu my ch cung cp dch v.

c- Ngi dng ch cn nhp mt khu mt ln trong sut phin lm vic.

d- Tt c u ng.
Cu 5. Trong Kerberos 4, bn tin yu cu xc thc gi t my con n AS cha cc thng tin
no?
a- Nhn din ca ngi dng (IDC), nhn din ca TGS (IDtgs) v nhn thi gian
ng b TS1.
b- Tn ng nhp v mt khu.
c- Tn ng nhp v a ch mng ca my con.
d- Mt khu m ho v a ch mng ca my con.
Cu 6. Trong Kerberos 4, bn tin yu cu dch v gi t my con n my ch dch v cha cc
thng tin no?
a- Cha th truy xut dch v c cp bi TGS.
b- Cha th truy xut dch v c cp bi TGS v tn ng nhp.

c- Cha th truy xut dch v cng vi Authenticator gm (ID c + ADC + TS5) gi

trc tip.

d- Cha th truy xut dch v cng vi Authenticator gm (ID c + ADC + TS5) c

m ho bng kho b mt dng chung gia my con v my ch cung cp dch
v.
Cu 7. Th no l mt lnh a Kerberos (Kerberos Realm)?
a- L h thng bao gm Kerberos server, cc my ch cung cp dch v v nhiu
my con.
b- L phm vi mng c qun l bi mt AS.
c- L phm vi mng c qun l bi mt TGS.
d- Tt c u sai.
Cu 8. im khc nhau gia Krberos 4 v Kerberos 5:
a- Kerberos 5 khng gii hn thi gian tn ti ca th, Kerberos 4 gii hn thi gian
tn ti ca th l khong 21 gi.
b- Kerberos 5 s dng mt m bt i xng, Kerberos 4 s dng mt m i xng.
c- Kerberos 5 dng tn ng nhp v mt khu xc thc ngi dng, Kerberos 4
dng a ch IP xc thc.
d- Tt c u ng.
Cu 9. ng dng ca IPSec:
a- Xy dng cc website an ton cho cc ng dng thng mi in t.
b- Xy dng cc mng ring o VPN trn nn mng Internet cng cng.
c- Cho php truy xut t xa mt cch an ton.
d- Tt c cc ng dng trn.
Cu 10. Chn cu ng v IPSec:
a- Khi s dng IPSec, kch thc gi d liu IP tng ln, do hiu sut truyn

gim xung.
b- Khi ci t IPSec trn mt h thng th IPSec s c tc dng bo v cho tt c cc
dch v ng dng chy trn h thng .
c- IPSec c th c thc hin nh mt phn mm ng dng.
d- Cu a v b.
Cu 11. SA l g?
a- L mt kt ni dng IPSec gia hai my tnh bt k.
b- L mt quan h truyn thng mt chiu gia hai thc th IPSec.
c- L mt ng dng c chc nng phn tch v nh gi mc an ton ca h
thng.
d- Tt c u sai.
Cu 12. c im ca AH:
a- C kh nng mt m ton b d liu trao i gia cc thc th IPSec.
b- Dng ch k s xc thc thng tin.
c- Ch vn chuyn ch cho php xc thc d liu gia hai thit b mng (router)
c h tr IPSec.
d- Tt c u sai.
Cu 13. Giao thc ESP:
a- Cung cp c ch mt m v xc thc d liu.
b- Tiu ca ESP gm hai phn, nm trc v nm sau gi IP gc.
c- S dng k thut mt m i xng bo v d liu.
d- Tt c u ng.
Cu 14. Qun l kho trong IPSec:
a- C chc nng to ra v phn phi kho cng khai ca cc u cui IPSec.
b- C th s dng PKI cho mc nh qun l kho trong IPSec.
c- Dng giao thc ISAKMP to v phn phi kho b mt gia cc u cui
IPSec.
d- Tt c u sai.
Cu 15. c im ca SSL:
a- L thnh phn ca H iu hnh.
b- Cung cp kt ni an ton cho tt c cc dch v ng dng trn cng mt h thng.
c- S dng mt m i xng m ho d liu.
d- Tt c cc c im trn.
Cu 16. Chc nng ca giao thc SSL record:
a- Phn on d liu, nn, to m xc thc, mt m ho d liu.
b- Cung cp c ch m bo tnh ton vn v tnh bo mt cho d liu.
c- Nn d liu tng hiu sut truyn

d- Tt c u sai.
Cu 17. Th tc bt tay (handshake protocol) trong SSL thc hin cc chc nng no sau y:
a- Thit lp cc thng s kt ni gia client v server.
b- Trao i chng thc client nhn c kho cng khai ca server v ngc li,
cc kho ny dng mt m d liu trao i gia client v server.
c- Thay i cc thng s v thut ton mt m.
d- Cu a v c.
Cu 18. Secure Electronic Transaction (SET):
a- L mt ng dng thng mi in t trn nn ca IPSec.
b- L mt giao thc an ton cho cc ng dng ton qua mng.
c- Dng mt m bt i xng (RSA) mt m ha thng tin.
d- Tt c u ng.
Cu 19. Trong mt giao dch trn SET:
a- Ngi mua hng (cardholder) phi c th tn dng do mt ngn hng c h tr
dch v thanh ton qua mng pht hnh.
b- Ngi bn hng (merchant) phi c quan h vi ngn hng pht hnh th.
c- Vic chuyn tin t ti khon ca ngi mua hng sang ti khon ca ngi bn
hng c thc hin theo yu cu ca ngi bn hng m khng cn mt thnh
phn th 3 no.
d- Vic chn la hng v quyt nh mua hng phi c thc hin thng qua giao
dch SET th mi c ngha.
Cu 20. Th no l ch k song song (dual signature)?
a- L mt ch k duy nht nhng gm hai bn sao gi cho hai i tc cng lc.
b- L mt ch k nhng gm hai thnh phn, c chc nng chng thc hai ni dung
khc nhau vi hai i tc khc nhau.
c- Gm hai ch k khc nhau nhng c ghp chung trong mt bn tin tit
kim chi ph truyn trn mng.
d- L mt ch k nhng c to ra bng vic p dng hm to ch k hai ln ln
cng mt khi thng tin gc nhm m bo tnh an ton ca ch k.
Cu 21. Th t thc hin cc giao tc trong SET:
a- Xc thc thanh ton, yu cu mua hng, thc hin thanh ton.
b- Yu cu mua hng, xc thc thanh ton, thc hin thanh ton.
c- Yu cu mua hng, thc hin thanh ton, xc thc thanh ton.
d- Tu tng trng hp m th t thc thi c th khc nhau.
B- Bi tp
Cu 22. Trong giao thc AH ca IPSec, thao tc to ra m xc thc (MAC) khng c thc hin
trn ton b gi d liu IP m ch thc hin trn cc phn khng thay i trong qu trnh
truyn (imutable) hoc nhng phn c thay i nhng c th on c. Hy ch ra trong

gi IP (version 4), nhng phn no c thay i, khng thay i hoc thay i nhng on
trc c trong qa trnh truyn?
Cu 23. ch vn chuyn ca IPSec, mt lp tiu (header) khc ca gi IP c to ra
song song vi tiu c. Nhng thnh phn no ca tiu mi ging vi tiu c?
Cu 24. Thc hin cu hnh IPSec trn Windows 2003 server.
Cu 25. Ci t v cu SSL cho Website trn Windows 2003 server.
----------

HNG DN TR LI CU HI V BI TP.
Chng I:
Cu 1.
c
Cu 9.
d
Cu 17.
a
Cu 25.
Cu 2.
b
Cu 10.
b
Cu 18.
d
Cu 26.
Cu 3.
d
Cu 11.
a
Cu 19.
c
Cu 27.
Cu 4.
d
Cu 12.
d
Cu 20.
d
Cu 28.
Cu 5.
a
Cu 13.
c
Cu 21.
b
Cu 29.
Cu 6.
b
Cu 14.
d
Cu 22.
c
Cu 30.
Cu 7.
c
Cu 15.
c
Cu 23.
c
Cu 31.
Cu 8.
a
Cu 16.
a
Cu 24.
d
Chng II:
Cu 1.
b
Cu 6.
a
Cu 11.
d
Cu 16.
Cu 2.
d
Cu 7.
b
Cu 12.
d
Cu 17.
Cu 3.
c
Cu 8.
b
Cu 13.
c
Cu 18.
Cu 4.
b
Cu 9.
a
Cu 14.
c
Cu 19.
Cu 5.
b
Cu 10.
c
Cu 15.
d
Cu 20.
Cu 21. Thc hin thut ton DES bng tay. Ch kho ph l K 16.
Cu 22. Chng minh tng t i vi cu trc Feistel.
Cu 23.
Cu 24. Thc hin bng tay thao tc m rng kho (expand key) ca AES.
Cu 25. Thc hin thut ton RSA vi cc thng s tng ng.
Cu 26. Thc hin thut ton Diffie-Hellman.
Chng III:
Cu 1.
b
Cu 7.
a
Cu 13.
d
Cu 19.
Cu 2.
b
Cu 8.
a
Cu 14.
c
Cu 20.
Cu 3.
a
Cu 9.
d
Cu 15.
c
Cu 21.
Cu 4.
d
Cu 10.
b
Cu 16.
b
Cu 5.
a
Cu 11.
d
Cu 17.
d
Cu 6.
d
Cu 12.
d
Cu 18.
b

d
d
c
a
c
d
d

a
d
d
a
D

a
b
b