Arcitura Education S90.18 Exam Actual Questions

Name: Fundamental SOA Security
Brand: QA4Exam
SKU: S90.18
Price: 30 USD
Availability: InStock
Rating: 4.8 (400 reviews)

The questions for S90.18 were last updated on Sep 21, 2024.

Viewing page 1 out of 20 pages.
Viewing questions 1-5 out of 98 questions

Unlock Access to All 98 Questions & Answers

Question No. 1

Service A is owned by Organization A . Service A sends a message containing confidential data to Service B, which is owned by Organization B . Service B sends the message to Service C, which is also owned by Organization B . Organization A trusts Organization B, which means there is no requirement to protect messages from intermediaries and after a message is received by Service B (and as long as the message remains within the boundary of Organization B), there is no requirement to keep the message data confidential. Which of the following approaches will fulfill these security requirements with the least amount of performance degradation?

AMessages exchanged between Service A and Service B are encrypted using XML-Encryption.

BThe communication channel between Service A and Service B is encrypted using a transport-layer security technology.

CSAML security tokens are used so that Service B can authenticate Service A.

DAn authentication broker is introduced between Service A and Service B.

Show Answer

Correct Answer: B

Question No. 2

You are required to design security mechanisms to enable secure message exchanges between different domain service inventories within the same organization. This needs to be documented in the design specification for which type of service-oriented architecture?

Aservice architecture

Bservice composition architecture

Cservice inventory architecture

Dservice-oriented enterprise architecture

Show Answer

Correct Answer: D

Question No. 3

Which of the following approaches represents a valid means of utilizing generic security logic?

AWhen required, generic security logic can be embedded within a service. The close proximity to the service logic maximizes the chances that the security logic will be consistently executed without interference from attackers.

BWhen required, generic security logic can be abstracted into a separate utility service. This allows for reuse.

CWhen required, generic security logic can be abstracted into a service agent. This allows for reuse and the security logic can be executed in response to runtime events.

DAll of the above.

Show Answer

Correct Answer: D

Question No. 4

Which of the following tasks directly relates to the application of the Service Loose Coupling principle?

ACreating one security policy that is shared by multiple services.

BCreating one security policy that is specific to one service.

CCreating multiple security policies that are specific to one service.

DAll of the above.

Show Answer

Correct Answer: D

Question No. 5

Service A hashes a message, resulting in message digest X. Service A encrypts the message digest X with its private key, resulting ir ciphertext X1. Service A sends the message and X1 to Service B . Service B hashes the message, resulting in message digest Y. Service B decrypts X1 with Service A's public key, recovering message digest X. Service B compares Y with X and finds them to be equal. This proves that:

Athe message was not altered

Bonly Service A sent this particular message

Cpublic key cryptography was used

DAll of the above

Show Answer

Correct Answer: D

Unlock All Questions for Arcitura Education S90.18 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 98 Questions & Answers