SOA Fundamental SOA Security - S90.18 Exam Practice Test
Symmetric and asymmetric encryption keys are always created in pairs.
Correct Answer: A
Vote an answer
The messages exchanged between two services are kept confidential by using symmetric
encryption. The security specialist is quite strict about making sure that no attacker is able
to intercept and decipher messages sent between these two services. As a result, periodic
audits are conducted in order to ensure that shared keys are always kept confidential. A
single shared key has been in use for quite some time now. The security specialist was
confident that all keys were well guarded, but just recently their security was compromised.
How is this possible given that the shared key was never lost?
encryption. The security specialist is quite strict about making sure that no attacker is able
to intercept and decipher messages sent between these two services. As a result, periodic
audits are conducted in order to ensure that shared keys are always kept confidential. A
single shared key has been in use for quite some time now. The security specialist was
confident that all keys were well guarded, but just recently their security was compromised.
How is this possible given that the shared key was never lost?
Correct Answer: D
Vote an answer
As part of Service Composition A, a service consumer needs to authenticate itself to four
different services. The Direct Authentication pattern was applied to each of these four
services, all of which share the same identity store. This identity store is also shared by a
number of additional services. As a result of increased usage, the identity store has
become a performance bottleneck. The resulting performance degradation is impacting
Service Composition A to the extent that it is causing problems. The security architecture
for Service Composition A needs to be improved in order to avoid further performance
degradation. However, any changes to the service composition architecture cannot break
any dependencies with the existing service consumer. Which of the following approaches
fulfills these requirements?
different services. The Direct Authentication pattern was applied to each of these four
services, all of which share the same identity store. This identity store is also shared by a
number of additional services. As a result of increased usage, the identity store has
become a performance bottleneck. The resulting performance degradation is impacting
Service Composition A to the extent that it is causing problems. The security architecture
for Service Composition A needs to be improved in order to avoid further performance
degradation. However, any changes to the service composition architecture cannot break
any dependencies with the existing service consumer. Which of the following approaches
fulfills these requirements?
Correct Answer: D
Vote an answer
Which of the following industry standards can be used to apply the Data Confidentiality
pattern?
pattern?
Correct Answer: C
Vote an answer
The application of the Service Abstraction principle can hinder your ability to fully determine
how a service composition is secured because you may not be able to find out how all
composed services are secured.
how a service composition is secured because you may not be able to find out how all
composed services are secured.
Correct Answer: B
Vote an answer
Service A supports WS-Security and Service B does not. How can they exchange secure
messages?
messages?
Correct Answer: B
Vote an answer
A project team is planning to create a secure service composition that consists of services
from two different domain service inventories. The security mechanisms for each service
inventory are based on different vendor technologies that adhere to the same industry
standards and the same design standards. What is wrong with this service composition
architecture?
from two different domain service inventories. The security mechanisms for each service
inventory are based on different vendor technologies that adhere to the same industry
standards and the same design standards. What is wrong with this service composition
architecture?
Correct Answer: D
Vote an answer
Service A hashes a message, resulting in message digest X.
Service A encrypts the
message digest X with its private key, resulting ir ciphertext X1. Service A sends the
message and X1 to Service B.
Service B hashes the message, resulting in message digest
Y. Service B decrypts X1 with Service A's public key, recovering message digest X.
Service B compares Y with X and finds them to be equal. This proves that:
Service A encrypts the
message digest X with its private key, resulting ir ciphertext X1. Service A sends the
message and X1 to Service B.
Service B hashes the message, resulting in message digest
Y. Service B decrypts X1 with Service A's public key, recovering message digest X.
Service B compares Y with X and finds them to be equal. This proves that:
Correct Answer: D
Vote an answer
Losing a ______________ does not compromise the identity of the key owner, whereas
losing a ___________ does compromise the identity of the key owner.
losing a ___________ does compromise the identity of the key owner.
Correct Answer: D
Vote an answer
The Data Confidentiality pattern is applied to all of the services in a service inventory. As a
result, all message data must be encrypted.
result, all message data must be encrypted.
Correct Answer: A
Vote an answer