Page: 6
Unit-5 : Web Application Security
Q14. Which two are valid values for the <transport-guarantee> element inside a <security-constraint> element of a web application deployment descriptor? (Choose two.) A. NULL B. SECURE C. INTEGRAL D. ENCRYPTED E. CONFIDENTIAL Answer: C, E Q15. Which basic authentication type is optional for a J2EE 1.4 compliant web container? A. HTTP Basic Authentication B. Form Based Authentication C. HTTP Digest Authentication D. HTTPS Client Authentication Answer: C Q16. Which security mechanism uses the concept of a realm? A. authorization B. data integrity C. confidentiality D. authentication Answer: D Q17. Which two security mechanisms can be directed through a sub-element of the <user-data-constraint> element in a web application deployment descriptor? (Choose two.) A. authorization B. data integrity C. confidentiality D. authentication Answer: B, C
Page: 6
1
2
3
4
5
6
7
8
9
10
|