最新的Oracle 1Z0-807免費考試真題

問題1

You are the architect of a web application that uses javaServer Faces (JSF) as a presentation tier;
and for business processes coded as stateless session beans. When you add new code to the stateless session beans to address new accounting requirements, without changing the interface, you discover that the new business processes are being ignored by some of the JSF components.
What might be the cause of this problem?

A. The new session beans have been deployed incorrectly, and proper deployment will resolve the problem.

B. The business processes are not rigorously encapsulated in the session beans.

C. The browser is caching out-of-date versions of the JSF components.

D. The presentation tier is relying on validation logic in the business tier.

正確答案: B

問題2

You are the architect for a patient management system with an HTML UI. Currently, it is used by ward nurses who access the system using dockable tablet computers. The application uses the HttpSession object to store information.
In phase two of the implementation, nurses will also have access through smart phones. These phones will use a native client rather than HTML, and will access the same business logic using a Web service.
Which two are optimal methods to manage conversational state in the new version of the system?

A. The HTML UI and native clients both use singleton beans.

B. The HTML UI uses anHttpSessionobject, native clients create asession managementobject.

C. The HTML UI and native clients both use stateless session beans.

D. The HTML UI and native clients both use HttpSession objects.

E. The HTML UI and native clients both usestateful session beans.

正確答案: B,E

問題3

Your company requires all its developers to use a well-specified set of exception classes to model several common error conditions, many of the which are specific to its business. These exception classes are centrally maintained and come packaged in a library (a JAR file). The application you are developing needs to report a number of error conditions covered by this library to remote clients.
Which paring of component type and remote access technology enables client applications to use the predefined exceptions as part of their natural programming model?

A. Message-driven bean accessed using Java Message Service (JMS) queue

B. Entity bean accessed using web services

C. Servlet accessed using HTTP

D. Stateless session bean accessed using Remote Method Invocation (RMI)

正確答案: D

問題4

Which two measures are most effective in protecting websites from cross site scripting (XSS) attacks?

A. URL-encode "<" and ">"parameters so they will never be evaluated by the JavaScript Interpreter.

B. Execute all user-supplied scripts in aserver-side sandbox.

C. Escape "<" and ">" parameters that displayed or evaluated by the JavaScript interpreter.

D. Ensure that thesession cookie is sent only onHTTPSconnections.

E. Treat all user-supplied input as unsafe, and white list known good characters

正確答案: B,D

問題5

A Hot Potato anti pattern can arise from misuse of which technology combination?

A. Bean Validation with JSF Managed Beans

B. JPA with the Web Tier

C. JNDI Lookups with Global Java Naming

D. Messagingin the Business Tier

正確答案: D

問題6

You are the architect of an existing project. Making changes to one component frequently requires making changes to many other components.
Which action would reduce future maintenance costs?

A. Expose the existing EJB components as web services.

B. Convert all stateful EJB components to stateless EJB components.

C. Redesign the configuration and deployment.

D. Add an abstractionlayer between the servlets and the EJB components.

正確答案: D

問題7

A company has been soiling a desktop based billing application that has Character User Interface (CUI) application developed by using Java. The company would like to release the next version of this application with the following features: a GUI with a pluggable look- and-feel capability and the flexibility to support multiple database vendors.
Which two technologies would you use in the new version?

A. JPA

B. CMP

C. JDBC

D. Swing

E. AWT

正確答案: C,D

說明：（僅 Fast2test 成員可見）

問題8

StockTeller is a Java-based application designed to retrieve the current market for a portfolio of publicly listed stocks. You have been tasked to design a bolt on module for StockTeller called EBroker, a Java E-based online application that needs to asynchronously communicate with StockTeller to retrieve market prices for securities in a secure manner.
Which web service technology would you choose to integrate StockTeller into the EBroker application?

A. JAX-WS using HTTP

B. JAX-RS using HTTPS

C. JAX-WS using HTTPS

D. JAX-RPC using HTTP

正確答案: C

問題9

You are the architect for XYZ bank. XYZ is redesigning their online banking offering and you need to ensure that the new design follows security best practices for the JEE platform.
Select three security best practices for JEE applications.

A. Treat users as untrusted even when authenticated.

B. Log all security related application events.

C. Encrypt data, both on the wire and at rest.

D. Implement an exception-handling strategy.

E. Use both programmatic and declarative security.

F. Schedule regular penetration testing.

正確答案: B,D,E

最新的Oracle Java EE 6 Enterprise Architect Certified Master - 1Z0-807免費考試真題

聯系我們

站內鏈接

最新更新