Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Security in the Architect Exam

 
Rahul Mahindrakar
Ranch Hand
Posts: 1869
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have listed the two objectives given in the security area of Exam objectives along with some answers. Anything else i should know in this area
Security
Select from a list security restrictions that Java 2 environments normally impose on applets running in a browser.
Check out this here http://java.sun.com/sfaq/
Applets are prevented from reading and writing files on the client file system
Check for the existence of the file
Read the file
Write the file
Rename the file
Create a directory on the client file system
List the files in this file (as if it were a directory)
Check the file's type
Check the timestamp when the file was last modified
Check the file's size
From making network connections except to the originating host.
Prevented from starting other programs on the client.
Not allowed to load libraries,
Define native method calls. If an applet could define native method calls, that would give the applet direct access to the underlying computer.
In both Java-enabled browsers and the appletviewer, applets can read these system properties by invoking System.getProperty(String key):
keymeaning
____________ ______________________________
java.versionJava version number
java.vendorJava vendor-specific string
java.vendor.urlJava vendor URL
java.class.versionJava class version number
os.nameOperating system name
os.archOperating system architecture
os.versionOperating system version
file.separatorFile separator (eg, "/")
path.separatorPath separator (eg, ":")
line.separatorLine separator
Applets are prevented from reading these system properties:
keymeaning
____________ _____________________________
java.homeJava installation directory
java.class.pathJava classpath
user.nameUser account name
user.homeUser home directory
user.dirUser's current working directory
To read a system property from within an applet, simply invoke System.getProperty(key) on the property you are interested in.
For example,
String s = System.getProperty("os.name");
applets can't invoke System.exit() in an attempt to kill your web browser
Given an architectural system specification, identify appropriate locations for implementation of specified security features, and select suitable technologies for implementation of those features.
where from do i study the above objective?
[This message has been edited by Rahul Mahindrakar (edited January 22, 2001).]
 
John Wetherbie
Rancher
Posts: 1449
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The second objective you list is one of the EJB-related objectives. The O'reilly Enterprise JavaBeans book is a good overall resource on EJBs. You might also check out the EJB 1.1 specification and other Sun documentation.
This objective is much more nebulous that the applet security one.
John
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic