SOA Fundamental SOA Security - S90.18 Exam Questions
QUESTION NO: 1
The communication between Service A and Service B needs to be kept private. A security
specialist is planning to implement secret key cryptography in order to encrypt the
messages. Which of the following approaches addresses this requirement?
The communication between Service A and Service B needs to be kept private. A security
specialist is planning to implement secret key cryptography in order to encrypt the
messages. Which of the following approaches addresses this requirement?
Correct Answer: C
QUESTION NO: 2
The SAML and WS-Security industry standards can be applied to the same service
composition architecture.
The SAML and WS-Security industry standards can be applied to the same service
composition architecture.
Correct Answer: A
QUESTION NO: 3
Using transport-layer security, an active intermediary that takes possession of a message
can compromise:
Using transport-layer security, an active intermediary that takes possession of a message
can compromise:
Correct Answer: D
QUESTION NO: 4
The X.509 token can be used to express a ______________ security token that provides
an X.509 digital certificate.
The X.509 token can be used to express a ______________ security token that provides
an X.509 digital certificate.
Correct Answer: C
QUESTION NO: 5
Security policies that extend the technical service contract must be standardized within a
given service inventory. This statement is in accordance with which service-orientation
principle?
Security policies that extend the technical service contract must be standardized within a
given service inventory. This statement is in accordance with which service-orientation
principle?
Correct Answer: C
QUESTION NO: 6
Which of the following tasks directly relates to the application of the Service Loose
Coupling principle?
Which of the following tasks directly relates to the application of the Service Loose
Coupling principle?
Correct Answer: D
QUESTION NO: 7
Username and X.509 token profiles can be combined so that a single message can contain
a username token that is digitally signed.
Username and X.509 token profiles can be combined so that a single message can contain
a username token that is digitally signed.
Correct Answer: A
QUESTION NO: 8
The requirement to defer security related state data at runtime relates directly to the
application of which service-orientation principle?
The requirement to defer security related state data at runtime relates directly to the
application of which service-orientation principle?
Correct Answer: A
QUESTION NO: 9
The application of the Service Autonomy principle is always negatively affected when
applying the Data Confidentiality pattern together with the Data Origin Authentication
pattern.
The application of the Service Autonomy principle is always negatively affected when
applying the Data Confidentiality pattern together with the Data Origin Authentication
pattern.
Correct Answer: B
QUESTION NO: 10
The application of the Brokered Authentication pattern is best suited for a scenario whereby
a service consumer does not need to re-authenticate itself with multiple services.
The application of the Brokered Authentication pattern is best suited for a scenario whereby
a service consumer does not need to re-authenticate itself with multiple services.
Correct Answer: B
