1、1、 question 1 You work as the application developer at Cer-T . Cer-T uses Visual Studio.Net 2005 as its application development platform. 你在 Cer-T 做应用程序开发人员,Cer-T 使用 VS2005 作为其应用程序 的开发平台。 You are developing a .Net Framework 2.0 application used to store a type-safe list of names and e-mail addresses
2、. 你正在开发一个.Net Framework 2.0 应用程序,用来存储一个包含了姓名和电子邮件的 类型安全的列表(清单) 。 The list will be populated all at once from the sorted data which means you well not always need to perform insertion or deletion operations on thd data. 这个列表会被完全的填充从排序的数据,这就意味着你不需要经常对这些数据完成插 入或删除操作。 You are required to choose a data s
3、tructure that optimizes(优化) memory use and has good performance. 请你选择一个数据结构,以便优化内存使用,具有良好的性能。 What should you do? 该如何做? A、 The System.Collections.Generic.SortedList class should be used B、 The System.Collections.HashTable class should be used C、 The System.Collections.Generic.SortedDictionary class
4、should be used D、 The System.Collections.SortedList class should be used 点评: SortedList 表示键/值对的集合,这些键值对按键排序并可按照键和索引访问。 HashTable 表示键/值对的集合,这些键值对根据键的哈希代码进行组织。 C 该类不存在 D 非类型安全的,没有引人泛型。 2、 Question 2 You work as an application developer at Cer-T . You have recently created an application that include t
5、he code shown below. 你在 Cer-T 做应用程序开发人员。最近你创建了一个应用程序,包含如下的代 码: public delegate string GetFileContentsDel(); public string GetFileContens() /Process file and return results You now need to invoke the GetFileContents method asynchronously(异步).You have to ensure that the code you use to invoke the GetF
6、ileContents method will continue to process other user instructions,and displays the results as soon as the GetFileContents method finishes processing. What should you do? 现在你需要异步调用 GetFileContents 方法。必须确保你的代码在调用 GetFileContents 方法的同时将继续处理其他用户的指令,并在 GetFileContents 方法完成处理后显示结 果。你应该怎么做? A、 Use the fo
7、llowing code: /创建委托对象并且实例化 GetFileContentsDel delAsync=new GetFileContentsDel(GetFileContents); IAsyncResult result=delAsync.BeginInvoke(null,null); while(!resul.IsCompleted) /Process other user instructions string strFile=delAsync.EndInvoke(result); B、 Use the following code: GetFileContentsDel del
8、Async=new GetFileContentsDel(GetFileContents); string strFile=delAsync.Invoke(); /直接调用 C、 Use the following code: string strFile=GetFileContents.Invoke();/语法错误 D、 Use the following code: GetFileContentsDel delAsync=new GetFileContentsDel(GetFileContents); IAsyncResult result=delAsync.BeginInvoke(nul
9、l,null); /Process other user instructions string strFile=delAsync.EndInvoke(result); 点评:IAsyncResult 包含异步操作的方法的类实现。对于只有同步方法的对象,只需 要定义一个委托,并使用其 BeginInvoke 和 EndInvoke 方法就可以了。 B、直接调用 C、语法错误 D、与题意不符合,没有状态判断 3、 Question 3 You work as the application developer at Hi-T . You have created a new service ap
10、plication named App01.App01 must still be deployed into the Hi-T network. A Hi- T network administrator named Rosanne Keith has already created a user ccount for App01. You must configure App01 to run in the context of this new user account.What should you do next? 你在 Hi-T 做应用程序开发人员。你已经创建了一个新的服务应用程序
11、命名 App01.该服务必须部署在 Hi-T 的网络中。Hi-T 的一个叫罗萨安娜基思 的网络管理员已经创建了 App01 的用户帐号。在新的用户帐号下要运行 App01,你必 须做一些相应的配置。下一步应该做什么? A、 Before Deploying App01,specify the startType property of the ServiceInstaller class. B、 Before delploying App01,specify the Account,Username,and Password properties of the ServiceProcessIn
12、staller class. 在部署 App01 之前,指定账户,用户名和密码的 ServiceProcessInstaller 类的属性。 C、 Install the service by using the CONFIG option of the net.exe command-line tool. D、 Install the service by using the installutil.exe command-line tool. 点评: 4、 Question 4 You pass a value-type variable into a procedure as an ar
13、gument.The procedure changes the variable;however,when the procedure returns,the variable has not changed.What happened?(Choose one.) 你在一个方法中传入了一个值类型的变量做参数。方法里改变了这个变量;而当方法 返回时,变量的值并没有被改变。这是为什么?(选择一项) A、 The variable was not initialized before it was passed in. 该变量在传入的时候没有被初始化 B、 Passing a value type
14、 into a procedure creates a copy of the data. 向方法里传入值类型的变量,实际上是传入了一个数据的副本。 C、 The variable was redeclared within the procedure level. 在方法体中重新申明了这个变量。 D、 The procedure handled the variable as a reference. 方法按引用处理了该变量 点评:考察了数据传参的方式:按值传参和按引用传参。 5、 Question 5 You work as the application developer at Hi-
15、T . You are working on a new application named App01. App01 is configured to perform a series of mathematical calculations. 你在 Hi- 做应用程序开发人员。正在开发一款新的应用程序,名字叫 App01;App01 配置为执行一系列的数学计算。 You create a class named AppClass and create a procedure named AppSP. AppSP must execute on an instance of the clas
16、s. 你创建了一个 AppClass 的类和一个 AppSP 的方法。该方法必须作为该类的实例运行。 You must configure the applications user interface(UI) so that it continues to respond for the duration that calculations are performed.You must write the code segment for calling the AppSP procedure which will accomplish your objective.Choose the c
17、ode segment which you should use. 你必须配置应用程序的用户界面,以便它在进行计算期间能够继续做出响应。你必须 编写用于调用 AppSP 程序的代码,以实现上述目标。选择下面的那段代码可以使用。 A、 private void AppSP(). private void DoWork() AppClass myValues=new AppClass(); Thread newThread=new Thread(new ThreadStart(AppSP); newThread.Start(myValues); B、 private void AppSP() pr
18、ivate void DoWork() AppClass myValues=new AppClass(); ThreadStart delStart=new ThreadStart(AppSP); Thread newThread=new Thread(delStart); if(newThread.IsAlive) new Thread.Start(myValues); C、 private void AppSP(AppClass values) private void DoWork() AppClass myValues=new AppClass(); Application.DoEve
19、nts(); AppSP(myValues); Application.DoEvents(); D、 private void AppSP(object values). private void DoWork() AppClass myValues=new AppClass(); Thread newThread=new Thread(new ParameterizedThreadStart(AppSP); 点评:引入线程 ThreadStart 该委托不能带参数 ParameterizedThreadStart 该委托可以带参数 6、 question 6 You work as the
20、application developer at Cer-T . Cer-T uses Visual Studio.Net2005 as its application development platform. 你在 Cer-T 做应用程序开发人员。Cer-T 用 VS2005 作为其开发平台。 You are developing a .NET Framework 2.0 financial application and are busy developing a module that backs up the critical data on a separate hard driv
21、e. 你正在开发一款.net2.0 的财务应用程序,并忙于开发一个模块,备份关键数据到一个 独立的硬盘驱动器(硬盘) You are required to decide which properties of the DriveInfo class to use and find the type of file system like FAT or NTFS and the drive free space and the user disk quota(配额/ 指标) should be ignored by the application. 你必须决定 DriverInfo 类使用的参
22、数,找到像 FAT 或者 NTFS 类型的文件系统和磁盘 的可以空间,并使应用程序忽略用户磁盘的配额。 What should you do?该如何做? A、 Use the DriveFormat and TotalFreeSpace properties of the DriveInfo class. B、 Use the DriveType and AvailableFreeSpace properties of the DriveInfo class. C、 Use the VolumeLabel and TotalSize properties of the DriveInfo cl
23、ass D、 Use the DriveType and TotalSize properties of the DriveInfo class. E、 Use the DriveFormat and AvailableFreeSpace properties of the DriveInfo class. 点评:DriverInfo 类的常用属性和方法 没有找到指定的属性 7、 Question 7 You are writing a method for a console application that lists options available to a user based o
24、n his group memberships.Which technique should you use? 你正在为一个控制台应用程序写一个方法,给一个基于组成员的用户列出可用的选项。 下面哪项技术可以? A、 WindowsPrincipal.IsInRole B、 WindowsIdentity.IsInRole C、 Imperative(迫切的) RBS demands(需求) D、 Declarative(声明) RBS demands 点评:WindowsPrincipal 允许代码检查 Windows 用户的 Windows 组成员身份 WindowsIdentity 表示
25、Windows 用户 8、 Question 8 You are as the application developer at Hi-T . You are working on an application named App01. App01 must be configured to use role-based security and authentication. 你在 Hi- 做应用程序开发人员。正在开发一款 App01 的应用程序。该程序必须 配置为使用基于角色安全和身份验证。 You must develop the code segment which will resu
26、lt in the runtime assigning an unauthenticated principal object to each running thread. 你必须开发代码段,这将导致在运行时分配了一个未经验证的主要对象对每个运行的 线程。 Choose the code segment which will accomplish the task. 选择那段代码可以实现。 A、 AppDomain domain=AppDomain.CurrentDomain; domain.SetPrincipalPolicy(PrincipalPolicy.WindowsPrincipa
27、l) B、 AppDomain domain=AppDomain.CurrentDomain; domain.SetThreadPrincipal(new WindowsPrinipal(null); C、 AppDomain domain=AppDomain.CurrentDomain; domain.SetAppDomainPolicy(PolicyLevel.CreateAppDomainLevel(); D、 AppDomain domain=AppDomain.CurrentDomain; domain.SetPrincipalPolicy(PrincipalPolicy.Unaut
28、henticatedPrincipal); 点评:AppDomain 表示应用程序域,它表示一个应用程序在其中执行的独立环境。无法继承此 类。 9、 Question 9 Given the best answer,which of the following lines of code would reverse(反向/ 倒转) the security restriction?(Choose all than apply) 给出最好的答案,下面的那个代码行会破坏安全限制?(选择多项) VB 注释 Dim e as EventLogPermission=New EventLogPermiss
29、ion(PermissionState.Unrestricted) PermitOnly /C# EventLogPermission e=new EventLogPermission(PermissionState.Unrestricted); PermitOnly(); A、e.RevertPermitOnly B、CodeAccessPermission.RevertPermitOnly C、e.RevertAll D、CodeAccessPermission.RevertAll E、e.RevertDeny F、CodeAccessPermission.RevertDeny 点评:Co
30、deAccessPermission 类 定义了一个所有代码访问权限的底层结构 System.Security.CodeAccessPermission 10、 Question 10 You work as the application developer at Hi-T . You are working on a new requirement. You have to create a class library that will open the network socket connections to computers on the Hi-T network. 你在 Hi-
31、T 做应用程序开发员。在工作上有了新的要求,需要创建一个类库,将 打开网络套接字连接上 Hi-T 的网络。 The class library must be deployed to the global assembly cache, with full trust granted. To cater for network socket connections being used, you develop this code segment; 该类库必须部署到全局程序集缓存,授予完全信任。为配合正在使用的网络套接字连 接,你开发如下的代码段: SocketPermission permi
32、ssion=new SocketPermission(PermissionState.Unrestricted); permission.Assert(); You discover though that there are certain existing applications which do not have the required permissions to open the network socket connections. You decide to cancel the assertion. Choose the code segment which will ac
33、complish this task. 你发现,虽然有一些现有的应用程序不具有所需的权限打开网络套接字连接,你决定 取消这一断言,选择代码段将完成这项任务。 A、 CodeAccessPermission.RevertAssert(); B、 CodeAccessPermission.RevertDeny(); C、 permission.Deny(); D、 permission.PermitOnly(); 点评:SocketPermission C 和 D 不正确。 B 是对 permission.Deny()方法的操作。 11、 question 11 You work as an ap
34、plication developer at Cer-T . You are required to dynamically load assemblies into a custom child application domain. 你在 Cer-T 做应用程序开发员。要求动态的加载程序集到一个自定义的子应用 程序域。 You need to ensure that the assemblies loaded into the child application domain have the same permissions as the applications that are ac
35、cessed across the local intranet. 你必须确保子应用程序域中加载的程序集有整个本地 intranet 访问的所有应用程序有相 同的权限。 What should you do?该如何做? A、 Use the following code to create the child application domain: Evidence childEvidence=new Evidence(new objectSecurityZone.Intranet,null); AppDomain.CreateDomain(“ChildDomain”,childEvidenc
36、e); B、 Use the following code to create the child application domain: AppDomain.CreateDomain(“ChildDomain”,SecurityZone.Intranet); C、 Use the following code to create the child application domain: AppDomain domain=new AppDomain(“ChildDomain”,SecurityZone.Intranet); D、 Use the following code to creat
37、e the child application domain: Evidence childEvidence=new Evidence(new objectSecurityZone.Intranet,null); AppDomain domain=new AppDomain(“ChildDomain”,childEvidence); 点评:Evidence(证据) AppDomain:表示应用程序域,它是一个应用程序在其中执行的独立环境。 C 和 D 错误,因为 AppDomain 的对象是不能通过 new 创建出来的。 B 第二个参数的类型不正确。SecurityZone 是一个枚举,定义与
38、安全策略所使用的 安全区域相对应的整数值。 (System.Security) AppDomain.CreateDomain(“字符串”, Evidence 对象); 参数一:域的友好名称 参数二:System.Security.Policy.Evidence 12、 Question 12 You work as the application developer at Hi-T . You create a code segment which will implement the class named Class01. The code segment is shown here: 你
39、在 Hi-T 在应用程序开发人员。你创建了一个将实现 Class01 类的代码片段。 如下: MyMethod function. public class Class01 public int MyMethod(int arg) return arg; You want the Class01.MyMethod function to be dynamically called from a separate class within the assembly. 你希望 Class01.MyMethod 方法是动态的从本程序集内的另外一个类中调用。 Choose the code segme
40、nt which you should use to accomplish the task 选择能够完成上述任务的代码段。 A、 Class01 myClass=new Class01(); Type t=typeof(Class01); MethodInfo m=t.GetMethod(“MyMethod”); int i=(int)m.Invoke(this,new object1); B、 Class01 myClass=new Class01(); Type t=typeof(Class01); MethodInfo m=t.GetMethod(“MyMethod”); int i=
41、(int)m.Invoke(myClass,new object1); C、 Class01 myClass=new Class01(); Type t=typeof(Class01); MethodInfo m=t.GetMethod(“Class01.MyMethod”); int i=(int)m.Invoke(myClass,new object1); D、 Type t=Type.GetType(“Class01”); MethodInfo m=t.GetMethod(“MyMethod”); int i=(int)m.Invoke(this,new object1); 点评:反射
42、A 和 D 不正确,因为在另外一个类中通过反射读取 Class01 中 MyMethod 的方法。 Invoke 的第一个参数是要反射的类的实例。 C 不正确,GetMethod(“ 方法名 ”),不需要加类名的限定符。 13、 Question 13 You work as the application developer at Hi-T . You are working on an existing application and must load a new assembly into this application. You must write the code segmen
43、t that will require the common language runtime(CLR) to grant the assembly a permission set,as though the assembly was loaded from the local intranet zone.You must ensure that the default evidence for the assembly is overridden and must create the evidence collection. 你在 Hi-T 做应用程序开发人员。你正在开发一个现有的应用程
44、序,而且必须加 载一个新的程序集到该程序中。虽然这个程序集加载自本地 intranet,你必须编写代码 段使得公共语言运行时(CLR)授权给程序集一个权限集。你必须确保给程序集提供 的默认证据被重写,并且创建一个新的证据集。 Choose the code segment which will accomplish this task. A、 Evidence evidence=new Evidence(Assembly.GetExecutingAssembly().Evidence); GetExecutingAssembly()获取当前执行代码的程序集 Evidence 获取此程序集的证据
45、 B、 Evidence evidence=new Evidence(); evidence.AddAssembly(new Zone(SecurityZone.Intranet); 将指定的程序集证据添加到程序集 C、 Evidence evidence=new Evidence(); evidence.AddHost(new Zone(SecurityZone.Intranet); 将主机提供的指定证据添加到程序集 D、 Evidence evidence=new Evidence(AppDomain.CurrentDomain.Evidence); 点评:定义组成对安全策略决策的输入的一
46、组信息,无法继承此类。 System.Security.Policy Evidence 是一个集合,它持有一组表示证据的对象。该类有两个与证据源(主机 证据和程序集证据)对于的集合。 Host evidence 由主机提供; Assembly evidence 是程序集本身的一部分。 A 和 D 都是获得当前程序集的证据集,与题意不符合。B 14、 Question 14 You are creating a front-end interface to a back-end database that stores user names and groups within the datab
47、ase itself. The user database is very simple,storing only user names and group memberships. You want to be able to use imperative and declarative RBS demands within your application based on the custom user database.Which of the following classes meets your requirements and would be most efficient t
48、o implement?(Choose all that apply) 你正在创建一个前端界面后端数据库,用于存储用户名和组在数据库中。用户 数据库非常简单,只存储用户名和组成员。你希望在自定义用户数据库的应用 程序基础上使用命令声明远程 Blob 存储命令。下面那些类满足你的要求并能有 效的实现?(选择多项) A、 GenericIdentity B、 GenericPrincipal C、 IIdentity D、 IPrincipal 点评: System.Security.Principal.GenericIdentity 表示一般用户 System.Security.Principa
49、l.GenericPrincipal System.Security.Principal.IIdentity System.Security.Principal.IPrincipal 15、 Question 15 You work as the application developer at Hi-T . You are creating a new code segment which is to be used for user authentication(认证) and authorization(授权) purposes. The current application data store already stores the username,password, and roles. You must establish the user security context, which should be used for the authorization checks like IsInRole. To authorize the user,
