1Z0-897 Exam Details

  • Exam Code
    :1Z0-897
  • Exam Name
    :Java EE 6 Web Services Developer Certified Expert
  • Certification
    :Oracle Certifications
  • Vendor
    :Oracle
  • Total Questions
    :120 Q&As
  • Last Updated
    :Dec 13, 2021

Oracle 1Z0-897 Online Questions & Answers

  • Question 61:

    Given the JAX-RS root resource class fragment:

    Choose the statement that best describes the configuration that would be required to support the access control constraint shown:

    A. No further configuration is required - the JavaEE runtime will pick up the security constraint and configure the web container to match.
    B. The developer will have to configure the web container to require authenticated access to the URLs corresponding to this resource, so the proper information can be propagated to the EJB container.
    C. The developer will have to turn on authentication in the web container configuration file, so that all incoming requests are authenticated in order to be processed.
    D. The developer will have to configure the web container to require authenticated access to the URLs corresponding to this resource, and then map web-tier roles to ejb-tier roles, since the JAX- RS and EJB runtimes cannot use the same set of roles.

  • Question 62:

    An MTOM optimized infoset+attachment on the wire for a large binary data saves around X% in size when compared to original infoset, where X is: (Choose one) A. 10%

    B. 20%
    C. 30%
    D. 60%

  • Question 63:

    An organization has business logic implemented in EJB components. Current clients use container-managed, role-based security to access the business logic using RMI. Management has determined that the business logic must be made available to non-RMI clients using a Web service. Which container-managed Web service security mechanism would the development team?use to allow Web service clients to use the current security model? (Choose one)

    A. XKMS
    B. XACML
    C. XML Digital Signature
    D. HTTP Basic Authentication
    E. annotations mapped to the JAX-WS runtime

  • Question 64:

    An automobile manufacturer publishes a Web service for use by their suppliers. The manufacturer has stringent security requirements that require suppliers to verify their identity. Data integrity and confidentiality must be maintained between the client and the server. Which two technologies can be used to meet the requirements? (Choose two)

    A. XACML and XKMS
    B. SSL with mutual authentication
    C. Message level security with WS-Security
    D. Private network and XML Signature

  • Question 65:

    Given the class:

    Choose the option that describes what would happen if this class were deployed (Choose one):

    A. Any HTTP GET or POST request with the URL "/resource" would result in a call to getName().
    B. Any HTTP GET or POST request with URLs that begin with "/resource" would result in a call to getName().
    C. A runtime error would result, since a method cannot be responsible for both GET and POST requests.
    D. A compile error would result, since a method cannot be responsible for both GET and POST requests.

  • Question 66:

    In designing the security for your enterprise application with multiple Web services, you don't want that each of the services handle user authentication by itself. Then which of the following you can use in your design?

    A. enable secure conversation for each service
    B. a centralized Policy Decision Point (PDP) via XACML
    C. a Security Token Service (STS)
    D. use transport level security with SSL

  • Question 67:

    Which two statements are true about the I-Stack and annotations technologies? (Choose two.)

    A. With 64-bit Java, JAXB compatible parameters are preferred for performance.
    B. @WebMethod is required for private methods, but public methods are exposed in any service automatically.
    C. Declaring business methods final is a good way to protect the integrity of the implementation class.
    D. Method parameters and return types must be compatible with the JAXB 2.0.
    E. JAX-WS uses annotations to invoke Web service requests at runtime.

  • Question 68:

    A developer is tasked with analyzing a new Web services project and must decide to use either SOAP or REST. Based on requirements, the developer determines the service must be stateful and have a documented interface and data types that clients can discover dynamically. Which two statements are true? (Choose two.)

    A. The SOAP approach consists of resources identified by unique URIs.
    B. SOAP services are self-documenting via the WSDL.
    C. Either SOAP or REST are suitable for the Web service.
    D. REST fully documents data types via the functional interface GET and POST.
    E. RESTful services are stateless by definition.

  • Question 69:

    An automobile manufacturer publishes a Web service for use by their suppliers. The manufacturer has stringent security requirements that require suppliers to verify their identity. Data integrity and confidentiality must be maintained between the client and the server. Which two technologies can be used to meet the requirements? (Choose two)

    A. XACML and XKMS
    B. SSL with mutual authentication
    C. Message level security with WS-Security
    D. Private network and XML Signature

  • Question 70:

    Where can a developer specify confidentiality or integrity constraints on communications with a Enterprise Bean exposed as a JAX-RS root resource?(Choose one)

    A. As annotations on the EJB exposed as a root resource.
    B. In the deployment descriptor for the EJB exposed as a root resource.
    C. In the deployment descriptor for the web application that is hosting the JAX-RS resource.
    D. In the vendor-specific configuration file for the container that is hosting the JAX-RS resource.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Oracle exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 1Z0-897 exam preparations and Oracle certification application, do not hesitate to visit our Vcedump.com to find your solutions here.