SOA Security Interview Questions

SOA Security interview questions

Take as many assements as you can to improve your validate your skill rating

Total Questions: 10

1. Which of the following is policy based XML security service by Cisco ?

A. Application Oriented Manager

B. Application Oriented Networking

C. Application Process Networking

D. All of the mentioned

Correct Answer is : Application Oriented Networking

2. Point out the wrong statement:

A. SOA eliminates the use of application boundaries, the traditional methods where security is at the application level aren’t likely to be effective

B. An atomic service cannot be decomposed into smaller services that provide a useful function

C. XML security service may be found in Citrix’s NetScaler 9.0

D. None of the mentioned

Correct Answer is : None of the mentioned

3. Which of the following is not a OASIS standard for SOA Security ?

A. Security Assertion Markup Language

B. Synchronized Multimedia Integration Language

C. WS-SecureConversion

D. All of the mentioned

Correct Answer is : Synchronized Multimedia Integration Language

4. Which of the following provides data authentication and authorization between client and service ?

A. SAML

B. WS-SecureConversion

C. WS-Security

D. All of the mentioned

Correct Answer is : SAML

5. Point out the wrong statement:

A. To address SOA security, a set of OASIS standards have been created

B. WS-SecureConversion attaches a security context token to communications such as SOAP used to transport messages in an SOA enterprise

C. WS-Trust is an extension of SOA that enforces security by applying tokens such as Kerberos, SAML, or X.509 to messages

D. None of the mentioned

Correct Answer is : WS-Trust is an extension of SOA that enforces security by applying tokens such as Kerberos, SAML, or X.509 to messages

6. Which of the following is web services protocol for creating and sharing security context ?

A. WS-Trust

B. WS-SecureConversion

C. WS-SecurityPolicy

D. All of the mentioned

Correct Answer is : WS-SecureConversion

7. Which of the following is part of a general WS-Policy framework ?

A. WS-Trust

B. WS-SecureConversion

C. WS-SecurityPolicy

D. All of the mentioned

Correct Answer is : WS-SecurityPolicy

8. Which of the following extends WS-Security to provide a mechanism to issue, renew, and validate security tokens ?

A. WS-Trust

B. WS-SecureConversion

C. WS-SecurityPolicy

D. All of the mentioned

Correct Answer is : WS-Trust

9. __________ is a mechanism for attaching security tokens to messages.

A. STT

B. STS

C. SAS

D. All of the mentioned

Correct Answer is : STS

10. Providing XML Gateway SOA security requires a _________ so that encryption is enforced by digital signatures.

A. Public Key Infrastructure

B. Private Key Infrastructure

C. Hybrid Key Infrastructure

D. None of the mentioned

Correct Answer is : Public Key Infrastructure

SOA Security interview questions