| 104 |
1Z0-807 |
A company that sells avatar skins tor virtual reality environments has a static website for advertising their wares. The website was built using What You See Is What You Get (WYSIWYG) html editor and also contains a lot of JavaScript. The company now wants to add server side processing capabilities developing a shopping application, the company is considering using JavaServer Faces (JSF). Which statement is true? |
|
The JavaScrip code has to be rewritten to conform to JSF standards. |
JSF tags cannot be integrated into the HTML generated by WYSIWYG editors. |
The web pages cannot be previewed accurately with a generic WYSIWYG HIML editor. |
The web pages must be converted into Face lets. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
 |
 |
| 103 |
1Z0-807 |
The integration team has reported a problem in testing a few deployed MDBs. By design, each MDB listens to one of four named queues. Two producers write
messages to each queue. The test issues messages of the same payload type that each producer will send, but varies the number or size of these messages to measure the messaging server’s performance. The team has noticed that the utilization remains at the same high rate any time the test writes messages destined for the third MDB. The message server log doesnot reveal any failure in sending messages to this MDB. Which anticipation expresses cause for this condition?
|
|
Hot Potato |
Leaky Abstraction |
Cache less Cow |
Golden Hammer |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 102 |
1Z0-807 |
You are asked to propose a software deployment strategy that will reduce a client will also make deploying and testing their software stack more efficient. Which element would you include in your proposal? |
|
Vertically scalable platform |
Horizontally scalable platform |
Virtualized platform |
Standard unit testing software |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 101 |
1Z0-807 |
Oasis Corporation has decided to develop a single Instance multi-tiered application with its existing EIS resources. You are the technical lead for the Integration team responsible for providing the following: - A common Interface that can easily access the heterogeneous EIS resources - Generic transaction mechanism support for EIS resource managers - A connection pool to legacy EIS resources. Which two technologies would you use to meet these requirements? |
|
JMS |
JDBC |
JCA |
JAX-WS |
JAX-RS |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 100 |
1Z0-807 |
You are the architect for XYZ bank. XYZ is redesigning their online banking offering and you need to ensure that the new design follows security best practices for the JEE platform. Select three security best practices for JEE applications. |
|
Schedule regular penetration testing. |
Log all security related application events |
Implement an exception-handling strategy. |
Encrypt data, both on the wire and at rest. |
Use both programmatic and declarative security. |
Treat users as untrusted even when authenticated. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3, 5 |
|
MC |
|
|
| 99 |
1Z0-807 |
Blue Berry Corporation, one of the biggest fruit traders in Canada, has the biggest competitor, Red Cherry Corporation. Blue Berry uses a web application that is
developed by using java technologies, whereas Red Cherry’s web application uses non-Java technologies. Blue Berry plans to share business sensitive, transactional data between the two systems by integrating them in a loosely coupled manner. Which technology should be used to this?
|
|
JMS |
JCA |
XML over HTTPS |
RMI over IIOP |
JBI |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 98 |
1Z0-807 |
Which three statements are true about inheritance? |
|
Inheritance helps to reuse existing code implementations. |
It should be possible to substitute the derived class for its base class. |
Inheritance allows you to modify the behavior of objects. |
Inheritance promotes encapsulation better than interfaces. |
The derived class must override all methods of the base class. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2, 3 |
|
MC |
|
|
| 97 |
1Z0-807 |
A company wants to design an internal website for the purpose of managing its numerous social events. The site will not have heavy traffic, but will require state to be persisted in a database. You have been tasked to complete this action item in your spare time. Which two Java EE-based approaches are best suited for quick development? |
|
Use JPA in the web tier only. |
Use message-driven beans to manage the posting of events. |
Use your domain model components as JavaServer Faces (JSF) managed beans. |
Use an Enterprise javaBeans (EJB) container to service-inject the domain model and support a JPA deployment. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 3 |
|
MC |
|
|
| 96 |
1Z0-807 |
You are conducting a security audit for a web application that uses URL rewriting. The application does not allow for user-generated content and is accessible only
via secured VPN. Which two security threats would you prioritize in your audit?
|
|
SQL injection |
Cross-site scripting |
Parameter-site manipulating |
Session hijacking |
Denial-of-service attacks |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4 |
|
MC |
|
|
| 95 |
1Z0-807 |
Which type of application would benefit from using the Singleton pattern? |
|
An application that interacts with external systems in serial fashion. |
An application that interacts with external systems in parallel fashion. |
A clustered application that can support 200 concurrent users. |
An application that requires remote monitoring capabilities |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 94 |
1Z0-807 |
Which three actions restrict the ability of a web application to scale in response to load as additional computing resources are made available to it? |
|
Implementing the Singleton pattern in the web tier |
Implementing core business logic in the web tier |
Implementing core business logic using stateless session beans |
Storing users’ session state in a database |
Maintaining users’ session state by using stateful session beans |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2, 5 |
|
MC |
|
|
| 93 |
1Z0-807 |
Which two statements are true about the timer service of a business component container? |
|
Timed notifications for all types of session beans can be scheduled by using this service. |
When the server is shut down, the timer is persisted automatically and becomes active again when the server is restarted. |
Each instance of message driven beans has unique timers. |
When stateful session bean instance is removed, the container detaches the timers associated with the instance and allocates them to the new instance. |
When a transaction is rolled hark, the timer creation within the transaction is also rolled back. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 5 |
|
MC |
|
|
| 92 |
1Z0-807 |
Which two are significant advantages of developing web applications with JavaServer Faces (JSF)? |
|
JSF pages can be previewed outside the web container. |
Backing beans can be unit tested outside the web container. |
Client-side validation mechanisms are automatically generated. |
JSF pages can be integrated with AJAX. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4 |
|
MC |
|
|
| 91 |
1Z0-807 |
Your company uses a payroll application that was developed using Java technologies. The company has acquired another company and plans to integrate its payroll process in existing application. You have been asked to implement this integration. You observe that the business logic adopted to calculate the payroll is
different in both companies. Which design pattern would be most appropriate to use in this integration?
|
|
Strategy |
Payload Extractor |
Fly Weight |
Composite |
Service Locator |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 90 |
1Z0-807 |
You are the architect of a web application that uses javaServer Faces (JSF) as a presentation tier for business processes coded as stateless session beans. When you add new code to the stateless session beans to address new accounting requirements, without changing the interface, you discover that the new business
processes are being ignored by some of the JSF components. What might be the cause of this problem?
|
|
The presentation tier is relying on validation logic in the business tier. |
The browser is caching out-of-date versions of the JSF components. |
The business processes are not rigorously encapsulated in the session beans. |
The new session beans have been deployed incorrectly, and proper deployment will resolve the problem. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 89 |
1Z0-807 |
Which two statements apply to unsigned applets? |
|
They can access the client file system. |
They can connect to third-party servers. |
They can connect to the originating host. |
They can invoke public methods of applets on a page. |
They can load native libraries. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4 |
|
MC |
|
|
| 88 |
1Z0-807 |
Which two use cases are best suited to the RPC style of messaging using Simple Object Access Protocol (SOAP)? |
|
Processing large sized communication messages |
Implementing line grained services |
Validating custom data types |
Implementing asynchronous web services |
Executing long running multi-part processes |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 87 |
1Z0-807 |
Which two security threats are negated by encrypting network transactions with Transport Layer Security (TLS)? |
|
SQL injection |
Session hijacking |
Man in the middle |
Cross-site scripting |
Denial of service |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 86 |
1Z0-807 |
Which two functions are essential parts of a service oriented architecture (SOA) infrastructure? |
|
The service provider, which executes business logic in a stateless fashion |
The service consumer, which accesses services from the service repository |
The service repository, which stores software component metadata |
The service broker, which delivers well-defined service-level agreements |
The service look-up facility, which provides a central resource for naming and access |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 3 |
|
MC |
|
|
| 85 |
1Z0-807 |
Which three statements are true about inheritance? |
|
Inheritance helps to reuse existing code implementations. |
It should be possible to substitute the derived class for its base class. |
Inheritance allows you to modify the behavior of objects. |
Inheritance promotes encapsulation better than interfaces. |
The derived class must override all methods of the base class. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2, 3 |
|
MC |
|
|
| 84 |
1Z0-807 |
Which two statements are true about the timer service of a business component container? |
|
Timed notifications for all types of session beans can be scheduled by using this service. |
When the server is shut down, the timer is persisted automatically and becomes active again when the server is restarted. |
Each instance of message driven beans has unique timers. |
When stateful session bean instance is removed, the container detaches the timers associated with the instance and allocates them to the new instance. |
When a transaction is rolled hark, the timer creation within the transaction is also rolled back. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 5 |
|
MC |
|
|
| 83 |
1Z0-807 |
Which two statements are true about RESTful web services? |
|
They can be both stateful and stateless. |
They support the use of AJAX in web applications. |
They are often similar than their Simple Object Access protocol (SOAP) equivalents. |
They are independent of the transport protocol. |
They support Remote Procedure Call (RPC) and message-Oriented Middleware (MOM) integration styles. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 82 |
1Z0-807 |
A company has been soiling a desktop based billing application that has Character User Interface (CUI) application developed by using Java. The company would
like to release the next version of this application with the following features: a GUI with a pluggable look- and-feel capability and the flexibility to support multiple database vendors. Which two technologies would you use in the new version?
|
|
Swing |
JDBC |
JPA |
CMP |
AWT |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2 |
|
MC |
|
|
| 81 |
1Z0-807 |
Your development team wants to use Google Guice. A previous architect assigned this request a low priority, citing the complexity of integration and no compelling
benefits statements from the requesting team. The team claims that their colleagues have achieved the integration using a pattern. This pattern reduced the level of difficulty and risk and did not require vendor support. Which pattern fits this description?
|
|
Context Holder |
Service Starter |
Dependency Injection Extender |
Bean Locator |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 80 |
1Z0-807 |
You have been tasked with improving the availability of an existing three tier application. What is your first stop in evaluating what changes should be made to the architecture to achieve the goal? |
|
Monitor network traffic between tiers. |
Separate presentation from business logic |
Identify and document all single points of failure. |
Cluster the presentation tier without session replication. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 79 |
1Z0-807 |
MedLabML is a startup firm that moves patient data between different care providers to provide a "single patient view". They use a B2B system to exchange
electronic business document with their key suppliers. They are seeking your advice about standards to review for improving their message-level security. Which standard or API would you recommend they read?
|
|
SAML 1.1 |
Web Service Interoperability Technology |
XML Signature |
SSL |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 78 |
1Z0-807 |
A successful web application is used by over two hundred thousand users. Due to this substantial load, the database is over bridged and fails frequently. All data,
included critical user records and temporary session data, is stored in the database. Because of resource constraints, a new database system cannot be installed. Which change will reduce the load on the database?
|
|
Creating more entity beans to optimize interaction wild the database |
Refactoring the web application to use DAOs to communicate with the database |
Refactoring the web application to store temporary session data on the web servers |
Adding more web servers to the web tier to distribute the load and reduce the number of transactions on the database. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 77 |
1Z0-807 |
You have been recruited by an online retailer of footwear to conduct a review of their online systems. Your primary Finding is that the development team has
implemented duplicated complex business logic as Java scripts directly into the JSPs, causing performance, scalability, and maintainability issues. Which two design patterns would you select to improve the current code base?
|
|
View Helper |
From Controller |
Composite View |
Service-to-Worker |
Business Delegate |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 76 |
1Z0-807 |
A company manufactures widgets for sale to distribution. Distributors call this company when they want to order more widgets. The company wants the distributors to send orders using XML documents over the Internet to reduce the number of data entry personnel needed. It has no control over the distributors technologies. The company does not want the Orders to impact the performance of other users. You have been assigned the task of designing a new API. Which method do you use? |
|
Design the API as a Java Message Service (JMS) queue. |
Design the API as an Remote Method Invocation (RMI) interface. |
Design the API as a synchronous web service. |
Design the API as an asynchronous web service. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 75 |
1Z0-807 |
Your consulting company has been asked to enhance an existing application. The current application is a two-tier system in which all the business logic is located in
thick clients. You are considering a solution that would involve moving the business logic into the server’s database In the form of stored procedures.
Which statement is an expected outcome of your proposed solution?
|
|
It will improve the scalability of the system. |
It will improve the manageability of the system. |
It will recline the amount of traffic on the network. |
It will, in effect, turn the application into a three-tier system. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 74 |
1Z0-807 |
You are the architect of an existing project. Making changes to one component frequently requires making changes to many other components. Which action would reduce future maintenance costs? |
|
Redesign the configuration and deployment. |
Add an abstraction layer between the servlets and the EJB components. |
Convert all stateful EJB components to stateless EJB components. |
Expose the existing EJB components as web services. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 73 |
1Z0-807 |
A Hot Potato anti pattern can arise from misuse of which technology combination? |
|
Bean Validation with JSF Managed Beans |
Messaging in the Business Tier |
JNDI Lookups with Global Java Naming |
JPA with the Web Tier |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 72 |
1Z0-807 |
An investment company has purchased a number of small online business referral systems that appeal to various niche demographics. The company wants to bring these networks together in hopes of finding a broad, single theme and brand image for these groups before they can do that, they need to get the users communicating with outside their current networks. Which Web Services pattern would you recommend they consider in building a scheme to accommodate this communication? |
|
Asynchronous Interactions |
PAOS Interactions |
Web Services Broker |
JMS Bridge |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 71 |
1Z0-807 |
During a security audit, it is noted that your application is vulnerable to SQL Injection attacks. Which two action would you perform to address this vulnerability? |
|
Use parameterized stored procedures with the embedded parameters. |
Add a text input validation filter to check user-supplied data. |
Configure user permissions in the deployment descriptor. |
Configure security roles in the deployment descriptor. |
Deploy the Internet facing nodes in a well defined demilitarized zone (DMZ) layer |
Use parameterized stored procedures with the principle of least privilege. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2 |
|
MC |
|
|
| 70 |
1Z0-807 |
A company that sells avatar skins tor virtual reality environments has a static website for advertising their wares. The website was built using What You See Is What You Get (WYSIWYG) html editor and also contains a lot of JavaScript. The company now wants to add server side processing capabilities developing a shopping application, the company is considering using JavaServer Faces (JSF). Which statement is true? |
|
The JavaScrip code has to be rewritten to conform to JSF standards. |
JSF tags cannot be integrated into the HTML generated by WYSIWYG editors. |
The web pages cannot be previewed accurately with a generic WYSIWYG HIML editor. |
The web pages must be converted into Face lets. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 69 |
1Z0-807 |
Oasis Corporation has decided to develop a single Instance multi-tiered application with its existing EIS resources. You are the technical lead for the Integration
team responsible for providing the following: - A common Interface that can easily access the heterogeneous EIS resources - Generic transaction mechanism support for EIS resource managers - A connection pool to legacy EIS resources. Which two technologies would you use to meet these requirements?
|
|
JMS |
JDBC |
JCA |
JAX-WS |
JAX-RS |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 68 |
1Z0-807 |
You are the lead technical designer for a new B2C retail application. A key goal is to minimize design and build complexity in order to maximize speed to market. Which three features of JPA make it the most appropriate technology to use in building the persistence layer of the application? |
|
JPA ensures thread safe semantics |
JPA ensures optimal database access logic |
JPA does not require an FJB container |
JPA provides vendor-neutral database access |
JPA provides ACID semantics |
JPA provides transparent scalability |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4, 5 |
|
MC |
|
|
| 67 |
1Z0-807 |
You are using an open source integration framework in your project. However, key interfaces do not explicitly define several strange conditions you have repeatedly
seen while testing. Which option is the name given to the anti pattern described above?
|
|
Composite View |
Leaky Abstraction |
Asynchronous Interaction |
Golden Hammer |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 66 |
1Z0-807 |
You are the architect of an existing project. Making changes to one component frequently requires making changes to many other components. Which action would reduce future maintenance costs? |
|
Redesign the configuration and deployment. |
Add an abstraction layer between the servlets and the EJB components. |
Convert all stateful EJB components to stateless EJB components. |
Expose the existing EJB components as web services. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 65 |
1Z0-807 |
YourDocs is an application that retrieves PDF documents of selected topics from both trusted and untrusted websites. It has been developed using a non-Java
technology. You are designing your Mlearn, a mobile-based e-learning application, which will be implemented in Java. You plan to integrate Your Docs with your application. Which web service technology would you choose to Integrate YourDocs into the YourMLearn application?
|
|
JAX-WS |
JAX-WS with REST |
JAX-RPC |
JAX-RS |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 64 |
1Z0-807 |
Your company is creating a Java EE corporate wide workflow system in winch significant internal business events are consumed by multiple applications. Due to
multi-year development plans, many of these applications do not exist yet, even at the design stage. IT has defined standard data formats for these events in the
form of small XML documents. Also, the rules for how an application filters and processes events are not fixed In advance and can change over the life or the
application. Which combination of technologies is best for distributing and consuming these events throughout the company?
|
|
Relational database and JDBC |
HTTP client library and servlets |
Remote Method Invocation (RMI) and stateless session beans |
Java Message Service (JMS) topics and message-driven beans |
JMS queues and message-driven beans |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 63 |
1Z0-807 |
You are integrating with a single legacy Enterprise Information System. You are interested in the transaction management capabilities of Java Connector
Architecture. This new system needs the capability to invoke multiple operations against this single legacy system. These operations succeeded together or fail together as a group. To which minimum level of transaction management do you set your resource adapter?
|
|
No transaction |
Local transaction |
Distributed transaction |
Container-managed transaction |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 62 |
1Z0-807 |
You are designing a bank application in which automated email reminders are sent to customers every 24 hours, starting from five days prior to a payment due date
until the payment is made? Which type of beans most closely match the implementation needs for this requirement?
|
|
Stateful session bean |
Stateless session bean |
Managed bean |
Message-driven bean |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 61 |
1Z0-807 |
ABC Travel offers a night reservation service, exposed as a web service. XYZ Stays offers a hotel reservation service, also exposed as a web service. ABC and
XYZ will not change their web service. A startup company has contacted you for advice about designing a new service that combines flight and hotel reservations,
which they will offer as a web service. The startup company plans to provide their service by implementing a portable Java EE solution that aggregates the two services offered by ABC Travel and XYZ ,Stays, a combined reservation succeeded. Only if both the flight reservation and the hotel reservation succeed. Which is the most effective way to meet the business requirement?
|
|
The startup company should implement their new service as a web service that uses an XA transaction manager. |
The startup company cannot implement their new service as a web service, but must use an enterprise JavaBean (EJB) component to gain transaction
propagation.
|
The startup company should implement their new service as a web service by calling the two existing services, and implementing their own compensating
transaction
|
The startup company can implement their new service as a web service by calling the two existing services in a single transaction, relying on transaction
propagation to support this business rule.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 60 |
1Z0-807 |
During a security audit, it is noted that your application is vulnerable to SQL Injection attacks.Which two action would you perform to address this vulnerability? |
|
Use parameterized stored procedures with the embedded parameters. |
Add a text input validation filter to check user-supplied data. |
Configure user permissions in the deployment descriptor. |
Configure security roles in the deployment descriptor. |
Deploy the Internet facing nodes in a well defined demilitarized zone (DMZ) layer. |
Use parameterized stored procedures with the principle of least privilege. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2 |
|
MC |
|
|
| 59 |
1Z0-807 |
While analyzing an application, you observe that it contains numerous Interfaces for complex domain logic. Completing a business Function currently requires
calling several of these interfaces in an order that is understood by system experts. Which design pattern would you suggest to refactor the code?
|
|
Façade |
MVC |
DAO |
Adapter |
Decorator |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 58 |
1Z0-807 |
StockTeller is a Java-based application designed to retrieve the current market for a portfolio of publicly listed stocks. You have been tasked to design a bolt on
module for StockTeller called EBroker, a Java E-based online application that needs to asynchronously communicate with StockTeller to retrieve market prices for securities in a secure manner. Which web service technology would you choose to integrate StockTeller into the EBroker application?
|
|
JAX-WS using HTTP |
JAX-WS using HTTPS |
JAX-RPC using HTTP |
JAX-RS using HTTPS |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 57 |
1Z0-807 |
Your application uses web services extensively and frequently to distribute large XML objects over HTTP. In addition, the application has been set particularly
demanding performance and scalability service level agreements (SLAs).
Which java API is best suited for your application?
|
|
STAX |
DOM |
JAXB |
JAXR |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 56 |
1Z0-807 |
Which statement is true about the use of security-related annotations in an enterprise bean? |
|
They can be used to specify permissions only on business methods. |
They can be used to specify permissions on a class or its business methods. |
They can be used to change an authentication mechanism. |
They can be used to acquire a secure connection using SSL |
They can be inherited from a parent abstract class. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 55 |
1Z0-807 |
Which two are objectives of the Abstract Factory pattern? |
|
To create whole-part hierarchies |
To create families of related objects |
To enforce dependencies between concrete classes |
To specify the types of objects to create by using a sample instance |
To separate the construction of a complex object from its representation |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 54 |
1Z0-807 |
Your web page design company is designing websites for all the stores in a local mall. Your company must create a consistent "look and fool" for these sites.
After this "look and feel- project has gone through demonstration, enhancement and approval iterations with the mall’s .lions, you job is complete and the development of the actual B2C (Business to-Client) system will be handled by a different firm. Which architecture is most appropriate for your prototype project?
|
|
Two tier, web-centric |
Three, web-centric |
Three-tier, enterprise-centric |
Three-tier, application-centric |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 53 |
1Z0-807 |
Which four services are guaranteed to be present in a specification compliant Java EE container? |
|
Security |
Persistence |
Naming and messaging |
Remote connectivity |
Failover |
Lifecycle management |
Multithreading handling |
Load balancing |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2, 4, 6 |
|
MC |
|
|
| 52 |
1Z0-807 |
Which three actions represent best practices when implementing an exception handling strategy for an application? |
|
Create a custom checked exception if an alternative action can be taken to resolve the exception. |
Create a custom unchecked exception if the action to resolve the exception cannot be defined. |
Always log the specific exception before re-throwing a wrapped exception. |
Always throw exceptions in methods that are designed for exception handling. |
Always include information specific to the error when logging an exception. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2, 5 |
|
MC |
|
|
| 51 |
1Z0-807 |
Which two statements are true about java Cryptography Architecture (JCA)? |
|
Any JCA provider must implement each supported category of algorithms. |
Exactly one Implementation of each category of cryptographic algorithms must be provided. |
Implementations of cryptographic algorithms can be plugged in to a JVM after it has been installed and at run time. |
Categories of algorithms supported by JCA include message digests, signatures encryption, management, and random number generation. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4 |
|
MC |
|
|
| 50 |
1Z0-807 |
Upper management has announced a change in a company’s primary hardware supplier for the next year, the timing of this change coincides with key purchases that line of business department has to make in support of its Java EE application upgrade/redesign project. You are asked to help outline a strategy to preserve the project timeline and keep hardware training costs contained. Which recommendation will you make? |
|
Add new hardware to create a heterogeneous environment. |
Request another year of sales and support with the existing vendor. |
Request more time to consider the total cost of change to your project and to modify your budget |
Use new hardware on the web tier and redeploy existing hardware to the other tiers. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 49 |
1Z0-807 |
Your company has been using the ACME database vendor for many years. Recently, it started considering a migration to the XYZ database vendor, who uses different SQL dialed. The SQL engines in ACME and XYZ have significant differences in performance when executing the same SQL queries? Which is the best persistence technology for database migration? |
|
JPA |
JDBC |
CMP entity bean |
JDBC row set XML serialization |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 48 |
1Z0-807 |
Which two statements are true about transport-layer security? |
|
It applies to both a message body and its attachments. |
It is loosely coupled with the transport-layer protocol. |
It is an end-to-end security mechanism. |
It prevents the captured data from being replayed at a later time. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 4 |
|
MC |
|
|
| 47 |
1Z0-807 |
Which two types of applications benefit from using JavaServer Faces (JSF)? |
|
An application with a customizable UI skin |
An application that implements access control on each action based on user role. |
An application in which type conversion of the values of UI components is implemented only in Java classes. |
An application that sets specific database validation listeners on a UI component |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4 |
|
MC |
|
|
| 46 |
1Z0-807 |
You are contracted to improve the performance of an application.While analyzing the application, you observe the following issues:- Tight coupling between client and business objects- Too many remote method Invocations between client and server. Which design pattern is best suited to improving performance? |
|
Web Service Broker |
Session Façade |
Value List Handler |
Data Access Object |
Service Activator |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 45 |
1Z0-807 |
You are the architect of an application that reads from and writes to multiple systems. The application must participate in an existing transaction to update a database using JDBC, and also invoke a transactional method on a remote system as part of the same transaction. Which two technologies would you suggest, to access remote system, for this application? |
|
Java Connector Architecture (JCA) |
java Message Service (JMS) |
Remote Method Invocation (RMI) |
Simple Object Access Protocol (SOAP) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 3 |
|
MC |
|
|
| 44 |
1Z0-807 |
You are the lead technical designer for a new B2C retail application. A key goal is to minimize design and build complexity in order to maximize speed to market.
Which three features of JPA make it the most appropriate technology to use in building the persistence layer of the application?
|
|
JPA ensures thread safe semantics |
JPA ensures optimal database access logic |
JPA does not require an FJB container |
JPA provides vendor-neutral database access |
JPA provides ACID semantics |
JPA provides transparent scalability |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 4, 5 |
|
MC |
|
|
| 43 |
1Z0-807 |
You are the architect at ACME, a large a large global retailer of festival and holiday accessories. ACME wants to launch a new shopping portal for the holiday shopping session, allowing two months from project inception to going live. The portal must contain in-house and third-party stock to attack customers.Fast response times are also critical so users remain engaged and sticky to the portal.
What would you recommend to the ACME project team to deliver this project?
|
|
Access all third party content using JSONP to dynamically load it from the browser. |
Access as much content with bulk-loading as possible; use JSONP to access the remainder. |
Access all content regardless of source using the HTML 5 XML parsing capabilities of the browser |
Access all third party content using JSON to dynamically load it from the browser. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 42 |
1Z0-807 |
Which two measures are most effective in protecting websites from cross site scripting (XSS) attacks? |
|
Escape "<" and ">" parameters that displayed or evaluated by the JavaScript interpreter. |
URL-encode "<" and ">"parameters so they will never be evaluated by the JavaScript Interpreter. |
Ensure that the session cookie is sent only on UTTPS connections. |
Treat all user-supplied input as unsafe, and white list known good characters |
Execute all user-supplied scripts in a server-side sandbox. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 5 |
|
MC |
|
|
| 41 |
1Z0-807 |
Your company has decided to expose a set of business operations through an API so that clients can access them remotely. These operations, which are modeled as methods on a stateless session bean component, act as building blocks for complex state-changing activities that need to possess atomicity,, consistency, isolation and durability (ACID) semantics. Select the best technology to implement the API. |
|
Remote Method Invocation (RMI) |
Java Message Service (JMS) |
XML over HTTP |
Java Connector Architecture (JCA) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 40 |
1Z0-807 |
Which two use cases are best suited to the RPC style of messaging using Simple Object Access Protocol (SOAP)? |
|
Processing large sized communication messages |
Implementing line grained services |
Validating custom data types |
Implementing asynchronous web services |
Executing long running multi-part processes |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 39 |
1Z0-807 |
A company provides call center support for corporations world-wide. Each agent in the call center can be assigned to multiple call center customers. All the company’s customers use Windows based user interfaces and it has Just signed a new customer that uses a Java EE back end and wants a rich interface. The company is developing a user interface for the new customer with the following requirements:- Customer service representatives (CSRs) must be able to work with minimal training on the application. - CSRs must be able to switch between call center systems quickly. - Screens must have a windows look and feel. - 2000 agents spread across four locations must be able to use the system. Which recommendation would you make to this company about the user interface (UI)? |
|
Write the UI using JSP and JSTL. |
Write the UI using JSPs with embedded script lets. |
Write the UI using AJAX, Accessing servlets directly. |
Write the UI using Java Swing and describe using JNLP. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 38 |
1Z0-807 |
Which two statements are true about delegation as an Object-Oriented Design technique? |
|
It is applied to a system only at compile time. |
It is an essential element of the Singleton pattern. |
It allows you to replace Inheritance with composition |
In Java technology, it is always implemented through the use of generics |
It always requires that at least two objects are involved in handling a request |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3, 5 |
|
MC |
|
|
| 37 |
1Z0-807 |
Your company provides a marketplace for industrial chemicals. You are required to offer accurate pricing and quantities to all marketplace users.
Marketplace users are globally distributed. What is the most appropriate technology to use to satisfy this requirement?
|
|
Server-side distribution using JAX-WS |
Client-side polling using JAX-RPC |
Web services using REST |
An enterprise messaging system |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 36 |
1Z0-807 |
Which two kinds of applications benefit from the adoption of service oriented architecture (SOA) inspired patterns and practices? |
|
An application that retains legacy systems while evolving to accommodate future business demands |
An application with tightly coupled services that enable messages to flow easily |
An application that utilizes fine-grained interfaces to provide communication to the object of a service |
An application in which the communication between services and the business process are platform independent. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 4 |
|
MC |
|
|
| 35 |
1Z0-807 |
Which two security threats are negated by encrypting network transactions with Transport Layer Security (TLS)? |
|
SQL injection |
Session hijacking |
Man in the middle |
Cross-site scripting |
Denial of service |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 34 |
1Z0-807 |
Your application produces messages by client applications. The number of clients interested in the messages varies continuously at run time. Any client can process any message, but a message must be processed exactly once. How should the messages be delivered to the clients? |
|
Using a Java Message Service (JMS) topic |
Using a Java Message Service (JMS) queue |
Using XML over HTTP |
Using a Simple Object Access Protocol (SOAP) web service |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 33 |
1Z0-807 |
Your company is considering migrating a persistence module, originally implemented as CMP entity beans, to now use JPA. Which two statements are true? |
|
Each CMP entity bean can be mapped to a single JPA entity class. |
The client code that accesses the CMP entity beans does not have to change. |
IPA cannot capture all the kinds of relationships supported by CMP entity beans |
The resulting IPA persistence module can be used on both the client and the server. |
The JNDI name of a JPA entity class can be customized to match that of the corresponding CMP entity bean. |
Remote clients of the CMP entity beans must start using web services to access the JPA entity classes on the server. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 4 |
|
MC |
|
|
| 32 |
1Z0-807 |
Which two are primary concerns for a service-oriented architecture (SOA)? |
|
Low cohesion |
Loose coupling |
Session handling |
Well defined contracts |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 31 |
1Z0-807 |
Which three principles are best practices when implementing a logging strategy for an enterprise application? |
|
Never print log messages to the console window. |
Use the appropriate logger level for logging information. |
Log messages for every method entry and exit. |
Include programmer-specific data in the log messages. |
Include the thread name and Java class name in log messages. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3, 4 |
|
MC |
|
|
| 30 |
1Z0-807 |
A business application that runs in an Enterprise JavaBeans (EJB) container must communicate with a transactional third-party service. The communication technology must allow changing service providers without changing the application’s business model. Which technology would meet these requirements? |
|
Java Message Service |
Remote Method Invocation |
Simple Object Access Protocol |
Java Connector Architecture |
Java Business Integration |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 29 |
1Z0-807 |
Which two functions are essential parts of a service oriented architecture (SOA) infrastructure? |
|
The service provider, which executes business logic in a stateless fashion |
The service consumer, which accesses services from the service repository |
The service repository, which stores software component metadata |
The service broker, which delivers well-defined service-level agreements |
The service look-up facility, which provides a central resource for naming and access |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 3 |
|
MC |
|
|
| 28 |
1Z0-807 |
You are consulting with a team that has maintained several legacy database for years. They have reviewed the JPA spec and are wondering if the technology would offer benefits over this current SQL base. Which statement identifies a risk of adopting JPA? |
|
JPA only works with well-known data models |
JPA may be able to model every table as a class. |
JPA could render code that requires extensive SQL tuning to perform well. |
JPA’s query language relies on a container to manage the persistence layer. |
JPA doesn’t provides ACID semantics. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 27 |
1Z0-807 |
You are the operations architect for a large online retailer. During peak times, your set of monitored applications exhibits non-reproducible errors. The data center is growing at 50% per annum, while your team headcount remains constant. Which method would you use to implement an affective monitoring strategy? |
|
Use the Visitor pattern to collect per-JVM statistics and store them centrally. |
Use the Strategy pattern to encapsulate collection logic for each JVM. |
Use the Thread Tracker to monitor the JVMs directly. |
Use the Observer pattern to monitor each JVM directly. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 26 |
1Z0-807 |
You are the architect of a JEE-based product that customers can configure to meet their own security requirements. You want to enforce basic without sacrificing customers ability to customize the product. Which is the best method to support both requirements? |
|
Define base roles and users declaratively |
Define base roles and users programmatically |
Build a custom security service to handle authorization |
Customize the JRE sandbox model by using local variables |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 25 |
1Z0-807 |
You are implementing an online music that will store and play a user’s collection of songs. You want users to rate their songs and view the top songs from friends. All queries must complete in four seconds or less. Which approach would meet the response time requirement with minimal overhead? |
|
Java class that uses JDBC with embedded SQL |
Java class that uses an optimized stored procedure |
JPA entity class with a lazy fetching strategy |
JPA entity class with an eager fetching strategy |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 24 |
1Z0-807 |
Which two actions limit the consequences of a network based attack? |
|
Implementing the principle of least privilege |
Installing a firewall at the outer boundary of your systems |
Placing Internet-accessible servers in a demilitarized zone |
Deploying a single sign-on system to provide system-wide authorization |
Allowing application servers privileged access to all databases |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 5 |
|
MC |
|
|
| 23 |
1Z0-807 |
Which two statements are true about RESTful web services? |
|
They can be both stateful and stateless. |
They support the use of AJAX in web applications. |
They are often similar than their Simple Object Access protocol (SOAP) equivalents. |
They are independent of the transport protocol |
They support Remote Procedure Call (RPC) and message-Oriented Middleware (MOM) integration styles. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 3 |
|
MC |
|
|
| 22 |
1Z0-807 |
You are the architect for a patient management system with an HTMLUI. Currently, it is used by ward nurses who access the system using dockable tablet computers. The application uses the Http Session object to store information. In phase two of the implementation, nurses will also have access through smart phones. These phones will use a native client rather than HTML, and will access
the same business logic using a Web service. Which two are optimal methods to manage conversational state in the new version of the system?
|
|
The HTML UI and native clients both use HttpSession objects. |
The HTML UI and native clients both use stateful session beans |
The HTML UI and native clients both use stateless session beans. |
The HTML UI uses an HttpSession object, native clients create a session management object |
The HTML UI and native clients both use singleton beans. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 21 |
1Z0-807 |
You are designing a new subsystem to store and scratch for user commands in a fashion company’s website. On class, Comment Manager, is responsible for accessing comment data and providing read-only access to other objects in the subsystem. Which two implementation details are necessary for the Cement manager class? |
|
The storage mechanism implemented in Comment Manager must be private to Comment Manager. |
All the accessor and mutator methods in Comment Manager must have the static modifier in their declarations. |
The comments must be assessable directly only within Comment Manager. |
Comment Manager should be a singleton object. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 3 |
|
MC |
|
|
| 20 |
1Z0-807 |
An online library wants to introduce a feature where an email notification is generated whenever a book becomes available for circulation. This notification must be sent to only those members who have expressed interest in that book. Which design pattern would you use to implement this requirement? |
|
Observer |
Payload Extractor |
Asynchronous Resource Integrator |
Web Service Broker |
Service Starter |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 19 |
1Z0-807 |
A company has been soiling a desktop based billing application that has Character User Interface (CUI) application developed by using Java. The company would like to release the next version of this application with the following features: a GUI with a pluggable look- and-feel capability and the flexibility to support multiple database vendors. Which two technologies would you use in the new version? |
|
Swing |
JDBC |
JPA |
CMP |
AWT |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 2 |
|
MC |
|
|
| 18 |
1Z0-807 |
Your CMC wants to move several web based search applications to an AJAX model, hoping to improve user engagement with a browser experience that feels smaller and more responsive. Which identifies a drawback to consider when adopting an AJAX model to improve user experience? |
|
Maintaining current performance could require more hardware |
Maintaining accessibility across clients may require more development |
Maintaining security within the page could be more difficult |
Maintaining page navigability for users would have to be re-evaluated |
Maintaining a scalable system could require redesigning applications. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 17 |
1Z0-807 |
A company must honor a service-level agreement (SLA) for its application, which states all database requests must execute within three seconds. Users complain that some requests take longer than five seconds to complete. You have been contracted to fix the problem. Which course of action do you recommend? |
|
Modify the program to implement multi threading and an event-driven design. |
Add servers to distribute the load. |
Upgrade the application server and the operating system. |
Define a plan for isolating the bottleneck, and define indicators that will measure performance under a test load. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
SC |
|
|
| 16 |
1Z0-807 |
A company is extending is successful social networking site to support the following channels: instant messaging (IM), email messaging and text messaging/SMS. At present, the site has scaled 400% in one year using a standard MVC Web framework the application experiences large surges or spikes in demand and also periods of inactivity. Notification delivery to the three channels does not need to be guaranteed.
Which solutions extends the current architecture and best meets the company's requirements?
|
|
Send the notification inline, that is, within the normal HTTP request-response cycle. |
Place messaging on a Java messaging Service (JMS) queue and use message-driven beans (MDBs) to create and send notifications. |
Insert the messages into a database and use plain old Java Objects (POJOs) to read the messaging using JDBC and send notifications. |
Insert the messages into a database and use entity beans to read the messages using JDBC and send notifications. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 15 |
1Z0-807 |
You need to restrict access to the administration screens in your website. Which two techniques test a user's permissions before granting access to a particular screen? |
|
Enterprise JavaBeans (EJB) entity |
Servlet filter |
Custom tag library |
Deployment descriptor |
Custom JavaScript in JSP |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 14 |
1Z0-807 |
Which is an objective of the Strategy pattern? |
|
To provide a way to configure a class with one of many behaviors |
To define an object that encapsulates how a set of objects interacts |
To define the skeleton of an algorithm, deferring some steps to subclasses |
To decouple an abstraction horn its implementation so that the two can vary independently |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 13 |
1Z0-807 |
A manufacturing company has a large investment in a legacy Inventory Management System (IMS) developed with third-party technologies. You have been asked to design a Java EE application that interacts with it.
You would like to ensure the following:
- Minimal application code is required to parse the communication messages.
- Communication is asynchronous and stateless.
- Performance import of the existing system is minimal.
Which two technologies combined would meet these requirements?
|
|
XML |
JSON |
RMI |
JAX-RS |
JAX-WS |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 12 |
1Z0-807 |
Which three web applications work best when they are designed to be server-push enabled? |
|
A news feed used for providing users with frequently updated news content |
A web chat that allows users to communicate using easily accessible web interfaces |
A live sporting event application, used to deliver current results during matches |
An auction system that provides users with live online bidding |
A graphics rendering application that generates visuals in an orderly fashion |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2,3,4 |
|
MC |
|
|
| 11 |
1Z0-807 |
Which option describes the design relationship between session beans and entity beans? |
|
Aggregation |
Separation of concerns |
Common reuse principle |
Liskov substitution principle |
Interface segregation principle |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 10 |
1Z0-807 |
What are two consequences of using the Composite View pattern? |
|
Improves performance |
Avoids duplicate content |
Forces a whole-part dependency |
Allows tables to be reused in multiple locations |
Restricts all sub views to have a consistent view technology |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 9 |
1Z0-807 |
Which two statements describe the contact between an Enterprise JavaBeans (EJB) container and the EJBs that it hosts? |
|
The container provides automatic logging of all exceptions and errors generated by EJB code. |
The container provides a transparent scaling mechanism to handle spikes in demand. |
An EJB can extend its services, such as security, to improve performance. |
The container has a well defined lifecycle model for each EJB type. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2, 4 |
|
MC |
|
|
| 8 |
1Z0-807 |
A travel company re-architects its application from a two-tier to a three-tier architecture. To see what impact the new architecture has on its non-functional requirements (NFR), the company intends to build a prototype based on the new architecture.The company compares the NFR metrics associated with the new prototype against the metrics from their original two-tier solution.
Which option is an advantage of the original two-tier solution?
|
|
It has better availability because it has fewer single points of failure. |
It has better manageability because each client has its own copy of the application. |
It has better performance because each client must use its own set of domain objects. |
It has better scalability because each client can access the database independently of other clients. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 7 |
1Z0-807 |
Which statements are true about Java integration technologies? |
|
Remote Method Invocation (RMI) helps to connect subsystems in a loosely coupled manner. |
Java Message Service (JMS) helps in synchronous messaging between Java and non-Java systems. |
JMS helps to broadcast messages to multiple Java-based receivers. |
Java Connector Architecture (JCA) helps to integrate with heterogeneous legacy enterprise information systems. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 6 |
1Z0-807 |
Your development team wants to use Google Guice. A previous architect assigned this request a low priority, citing the complexity of integration and no compelling benefits statements from the requesting team.
The team claims that their colleagues have achieved the integration using a pattern. This pattern reduced the level of difficulty and risk and did not require vendor support.
Which pattern fits this description?
|
|
Context Holder |
Service Starter |
Dependency Injection Extender |
Bean Locator |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
| 5 |
1Z0-807 |
Which two features are supported by the Java Authentication and Authorization Service (JAAS) API? |
|
Single sign on |
Secure network connections |
Configurable access control policies |
Web services security |
Message encryption and key generation |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 3 |
|
MC |
|
|
| 4 |
1Z0-807 |
Which two statements are true about security strategies at the message level? |
|
Messages are secured during transport and after arrival at their destination |
Each portion of a compound message is secured. |
SSL is required to ensure authenticity, integrity, and confidentiality |
Message attachments are secured without the need for a dedicated API. |
Security is dependent on the application environment or the transport protocol. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1, 4 |
|
MC |
|
|
| 3 |
1Z0-807 |
You are using an open source integration framework in your project. However, key interfaces do not explicitly define several strange conditions you have repeatedly seen while testing.
Which option is the name given to the anti pattern described above?
|
|
Composite View |
Leaky Abstraction |
Asynchronous Interaction |
Golden Hammer |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
SC |
|
|
| 2 |
1Z0-807 |
While analyzing an existing web application, you observe the following issues in the source code:- Duplicate control code is scattered throughout various view.
- Business and presentation logic are mixed within these view. The next phase of the project involves refactoring the existing code to address these two issues.Which design pattern, if employed in the refactoring exercise, would most directly address the two issues?
|
|
Service to Worker |
Dispatcher view |
DAO |
Composite View |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
|
SC |
|
|
| 1 |
1Z0-807 |
Your company requires all its developers to use a well-specified set of exception classes to model several common error conditions, many of the which are specific to its business. These exception classes are centrally maintained and come packaged in a library (a JAR file). The application you are developing needs to report a number of error conditions covered by this library to remote clients.
Which paring of component type and remote access technology enables client applications to use the predefined exceptions as part of their natural programming model? |
|
Servlet accessed using HTTP |
Entity bean accessed using web services |
Stateless session bean accessed using Remote Method Invocation (RMI) |
Message-driven bean accessed using Java Message |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
SC |
|
|
