Most Recent Arcitura Education S90.19 Exam Questions & Answers

Prepare for the Arcitura Education Advanced SOA Security exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Arcitura Education S90.19 exam and achieve success.

The questions for S90.19 were last updated on Nov 24, 2024.

Viewing page 1 out of 17 pages.
Viewing questions 1-5 out of 83 questions

Get All 83 Questions & Answers

Question No. 1

Because of a new security requirement, all messages received by Service A need to be logged. This requirement needs to be expressed in a policy that is part of Service A's service contract. However, the addition of this policy must not impact existing service consumers that have already formed dependencies on Service A's service contract. How can this be accomplished?

AThe policy can be centralized and isolated into a separate policy document that is linked to the service contract.

BThe policy can be expressed using a digital certificate that is added to the service contract.

CThe policy can be expressed using an ignorable policy assertion that is added to the service contract.

DNone of the above.

Show Answer

Correct Answer: C

Question No. 2

An XML bomb attack and an XML external entity attack are both considered types of XML parser attacks.

ATrue

BFalse

Show Answer

Correct Answer: A

Question No. 3

The Exception Shielding pattern was applied to the design of Service A . During testing, it is revealed that Service A is disclosing sensitive error information in one of its response messages. How is this possible?

AIt is the Message Screening pattern, not the Exception Shielding pattern that prevents a service from transmitting sensitive error information in response messages.

BThe Trusted Subsystem pattern has already been applied to Service A, thereby conflicting with the application of the Exception Shielding pattern.

CThe Exception Shielding pattern states that, in case of an error, the service should not send back any message at all, because this would implicitly tell the service consumer that something has gone wrong, thereby exposing vulnerabilities.

DNone of the above.

Show Answer

Correct Answer: D

Question No. 4

Architects have applied the Service Perimeter Guard pattern to a service inventory by adding a perimeter service inside the firewall that receives all incoming request messages and then routes them to the appropriate services. The firewall has been configured to allow any service consumers to send messages to the perimeter service. You are told that this security architecture is flawed. Which of the following statements describes a valid approach for improving the security architecture?

AThe Trusted Subsystem pattern needs to be applied to the perimeter service so that it can authenticate all incoming requests before forwarding them to services within the service inventory.

BThe perimeter service needs to be outside the firewall and the firewall needs to be configured so that only the perimeter service has access to the services within the service inventory.

CThe described security architecture is not flawed because the Service Perimeter Guard pattern was applied correctly.

DNone of the above.

Show Answer

Correct Answer: B

Question No. 5

A malicious active intermediary intercepts a message sent between two services. What concerns are raised by such an attack?

AThe integrity of the message can be compromised

BThe confidentiality of the message can be compromised

Cthe message can be routed to a different destination

DAll of the above.

Show Answer

Correct Answer: D

Unlock All Questions for Arcitura Education S90.19 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 83 Questions & Answers