计算机安全课后题.docxVIP

计算机安全原理与实践课后习题答案第一章概述 Overview Pe6-Pc4P1.1-Pe36-Pc24 Consider an automate tell machine (ATM) in which users provide a personal identification number (PIN) and a card for account access. Give examples of confidentiality, integrity, and availability requirements associated with the system and, in each case, indicate the degree if importance if the requirement.思考在自动柜员机（ATM）上，用户提供银行卡和个人标识码（PIN）用于账户访问。给出与系统相关的机密性、完整性和可用性要求的例子，并说明每种情况下的要求的重要性等级。答：The system must keep personal identification numbers confidential, both in the host system and during transmission for a transaction. It must protect the integrity of account records and of individual transactions. Availability of the host system is important to the economic well being of the bank, but not to its fiduciary responsibility. The availability of individual teller machines is of less concern.P1.5-P37-Pc25 Use a matrix format to show the relationship between X.800 security services and security correspond to services. Each cell in the matrix should be checked, or not, to indicate whether the corresponding mechanism is used in providing the corresponding service.使用矩阵形式来说明X.800安全服务和安全机制间的关系。矩阵的列对用安全机制，行对应安全服务。矩阵中的每一个单元用来表示是否有相应的机制提供对用的服务。P1.6-P37-Pc25 Draw a matrix similar to that for the preceding problem that shows the relationship between X.800 security services and network security attacks.画一个类似于上述问题的矩阵，给出X.800安全服务与网络安全攻击的关系。P1.7-P37-Pc25 Draw a matrix similar to that for the preceding problem that shows the relationship between X.800 security mechanisms and network security attacks.画一个类似于上述问题的矩阵，给出X.800安全机制与网络安全攻击的关系。第六章入侵检测Instruction Detection Pe176-Pc116R6.10-Pe209-Pc138 What is the difference between a distributed host-based IDS and a NIDS?基于主机的分布式IDS和NIDS之间的区别是什么？答：A NIDS examines packet traffic directed toward potentially vulnerable computersystems on a network. A host-based system examines user and software activityon a host. A distributed IDS is a collection of host-based IDSs that cooperate, butthe focus