Greetings.
I am attempting to pass 1Z0-807. One place I need to improve (according to previous test results) is security. In particular, applet/JNLP security. However, as of a release some time back of Java, those rules have changed. So, are the questions going to be about whenever the test was designed, or whatever is up to date, given this is really about Java EE 6?

Thanks for all responses.

Read this link. I think most security related questions were taken from this, but the one on applets are not here though...

Security Mechanisms in JAVA EE 6

L Foster wrote:Greetings.
I am attempting to pass 1Z0-807. One place I need to improve (according to previous test results) is security. In particular, applet/JNLP security. However, as of a release some time back of Java, those rules have changed. So, are the questions going to be about whenever the test was designed, or whatever is up to date, given this is really about Java EE 6?

Thanks for all responses.

You asked actually a good question: sometimes also I had to think what exam creator wanted to hear from, not what is currently technology allows. (did I mention that I failed first time :-))

As for applets, this link might be helpful: http://docs.oracle.com/javase/tutorial/deployment/applet/security.html

And I believe exam creator wanted you to answer what sandboxed applets may do, like connect only to the host which they were downloaded from, invoking public methods of other applets on the same HTML page, etc...

Because for privileged applets these restrictions do not make sense.

Best regards,
MZ