• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

a vague question

 
shi lei
Greenhorn
Posts: 15
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
In Mock Exam

1.The web client obtains the username and password from the user and transmits it
to the server using Base64 encoding.
Best describes which Authentication scheme?

answer is :Http Basic Authentication

but why not :Form Based Authentication

2.In JWebplus
Identify the authentication techniques that are based on builtin mechanisms of HTTP.
answer is :BASIC,DIGEST
but why not Form
[ July 03, 2006: Message edited by: shi lei ]
 
Gaurav Gambhir
Ranch Hand
Posts: 256
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The web client obtains the username and password from the user and transmits it
to the server using Base64 encoding.
Best describes which Authentication scheme?


Since only Http Basic Authentication use Base64 encoding to transmit userid and password, so its the right answer.
In Form based authentication user password is transmitted
as plain text.

See specs SRV.12.5.3 Form Based Authentication
 
Christophe Verré
Sheriff
Posts: 14691
16
Eclipse IDE Ubuntu VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
2. Because only Basic and Digest are defined in the HTTP protocol.

http://www.w3.org/Protocols/rfc2616/rfc2616-sec11.html#sec11
 
Gaurav Gambhir
Ranch Hand
Posts: 256
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
2.In JWebplus
Identify the authentication techniques that are based on builtin mechanisms of HTTP.
answer is :BASIC,DIGEST
but why not Form


HTTP Basic Authentication
HTTP Digest Authentication
Above two authentication mechanism are defined in the HTTP/1.0 specification.

While HTTPS Client Authentication
Form Based Authentication
are defined in J2EE specifications
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic