Free Cheat-test Samples and Demo Questions Download
Adobe exams Adobe
Apple exams Apple
Avaya exams Avaya
Check Point exams Check Point
Cisco exams Cisco
Citrix exams Citrix
CIW exams CIW
CompTIA exams CompTIA
EC-Council exams EC-Council
EMC exams EMC
Exin exams Exin
Fortinet exams Fortinet
Hitachi exams Hitachi
HP exams HP
IBM exams IBM
Isaca exams Isaca
ISC exams ISC
Juniper exams Juniper
LPI exams LPI
McAfee exams McAfee
Microsoft exams Microsoft
Oracle exams Oracle
PMI exams PMI
Riverbed exams Riverbed
SNIA exams SAP
Sun exams SAS
Symantec exams Symantec
VMware exams VMware
All certification exams

Oracle 1Z0-897 Exam -

Free 1Z0-897 Sample Questions:

Q: 1
An airline built and deployed a back-end application to manage reservations. To support interoperability with as large a base of standalone client applications as possible, the services provided by this back-end application are exposed as XML-based restful web services. Management just added a new requirement that AJAX-based web application clients be supported, too. One of the developers suggested that it is enough to extend the existing application to support both XML-based and JSON-based restful web services. Assuming the developer is correct, choose the sentence that best describes an attempt to introduce this ability as this developer suggests (Choose one):
A. The attempt will fail, because JAX-RS does not support both XML- and JSON- based restful services in parallel.
B. The attempt will be trivial to implement, since JAX-RS just needs for the application to specify that both XML- and JSON-based interaction will be supported.
C. The attempt can succeed, but it will require a significant amount of new code, since JAX-RS does support both XML- and JSON-based interaction - but not single resource can support both kinds of interaction simultaneously.
D. The attempt will fail, because there is more to the difference between XML-based and JSONbased interactions than just the data representation used.
Answer: B

Q: 2
A company is refactoring an existing website to use Web services clients. The application retrieves lists of parts and displays them to the users in a browser window. Previously, the data was stored as files on the web server and, in order to access the files, the user would simply click on a hyperlink. Now the data must be dynamically generated via a service that another developer has created. They want the easiest way to refactor their website to use Web services. Which three client-side technologies should they use? (Choose three.)
C. Javascript
Answer: B, C, E

Q: 3
A Web service needs to encrypt certain SOAP headers when responding. Which statement about this encryption is true?
A. The Web service runtime is the appropriate place for such encryption.
B. The Web service business logic is the appropriate place for such encryption.
C. Either the Web service business logic or runtime is appropriate for such encryption.
D. Neither the Web service business logic nor runtime is appropriate for such encryption.
E. Transport level security protocol like SSL should be used to meet the requirements without code changes.
Answer: A

Q: 4
An automobile manufacturer publishes a Web service for use by their suppliers. The manufacturer has stringent security requirements that require suppliers to verify their identity. Data integrity and confidentiality must be maintained between the client and the server. Which two meet all of these requirements? (Choose two.)
A. X.509 and XKMS
C. SSL and mutual authentication
D. XML Encryption and XML Digital Signature
E. Private network and XML Signature
Answer: C, D

Q: 5
An organization has business logic implemented in EJB components. Current clients use
container-managed, role-based security to access the business logic using RMI. Management has
determined that the business logic must be made available to non-RMI clients using a Web
service. Which container-managed Web service security mechanism would the development
team?use to allow Web service clients to use the current security model? (Choose one)
C. XML Digital Signature
D. HTTP Basic Authentication
E. annotations mapped to the JAX-WS runtime
Answer: D

Q: 6
A developer creates a Web service for his company's inventory service. He uses servlet container to deploy the web service and wants to enable basic authentication for all web service invocations.
Where does the developer configure security requirements for the above case?
A. sun-jaxws.xml
B. web.xml
C. webservices.xml
D. domain.xml
Answer: B

Q: 7
Choose the option that best describe the deployer's choices, when deploying an EJB that is also exposed as a RESTful web service using JAX-RS (Choose one):
A. The EJB can only be deployed to a web container, since RESTful access to the EJB requires a web container to support the HTTP interaction needed.
B. The EJB can be deployed to any EJB or web container that would support local references to the EJB from the JAX-RS runtime in the ejb container.
C. The EJB can be deployed to any EJB or web container that would support local references to the EJB from the JAX-RS runtime in the web container.
D. The EJB can be deployed to an EJB or web container that is visible to the JAX-RS runtime, even on an application server separate from the JAX-RS runtime, since EJBs support local or remote interactions via RMI.
Answer: C

Q: 8
Which of the following security technology is not covered in Metro project? (Choose one.)
A. WS-Trust
B. WS-SecurityPolicy
C. WS-SecureConversation
Answer: D

Q: 9
A developer needs to write a Web service that supports user sessions that timeout after 120 seconds. Which configuration file is correct for the developer use? (Choose one)
A. web.xml
B. server.xml
C. ejb-jar.xml
D. service-config.xml
Answer: A

Q: 10
A developer is creating a web service endpoint using a stateless session EJB for the business logic of an application. Choose two methods to select role based access control for the business logic? (Choose two)
A. Using method-permission element in ejb-jar.xml
B. Using .htaccess file in the application's ear
C. Using <security-role> element in web.xml
D. By specifying security annotations like @RolesAllowed in the EJB class
Answer: A, D

© 2014, All Rights Reserved